D-Link DFL-1600 Reference Guide
2.1.178. tls_disallowed_key_exchange (ID: 00200458)
Default Severity
Log Message
TLSALG: Disallowed key exchange.
Explanation
The TLS ALG session will be closed because there are not enough
resources to process any TLS key exchanges at the moment. This
could be a result of TLS handshake message flooding. This action is
triggered by a system that monitors the amount of resources that is
spent on key exchanges. This system is controlled by the advanced
setting SSL_ProcessingPriority.
resources to process any TLS key exchanges at the moment. This
could be a result of TLS handshake message flooding. This action is
triggered by a system that monitors the amount of resources that is
spent on key exchanges. This system is controlled by the advanced
setting SSL_ProcessingPriority.
Gateway Action
close
Recommended Action
Investigate the source of this, and try to find out if it is a part of a
possible attack, or normal traffic.
possible attack, or normal traffic.
Revision
1
Parameters
algname
Context Parameters
2.1.179. tls_invalid_message (ID: 00200459)
Default Severity
Log Message
TLSALG: Invalid TLS <message_type> message received.
Explanation
A badly formatted TLS message has been received. The TLS ALG
session will be closed.
session will be closed.
Gateway Action
close
Recommended Action
None.
Revision
1
Parameters
message_type
algname
algname
Context Parameters
2.1.180. tls_bad_message_order (ID: 00200460)
Default Severity
Log Message
TLSALG: Bad TLS handshake message order.
Explanation
A TLS handshake message of a type that is not expected in the current
state of the handshake was received. The TLS ALG session will be
closed.
state of the handshake was received. The TLS ALG session will be
closed.
Gateway Action
close
2.1.178. tls_disallowed_key_exchange
(ID: 00200458)
(ID: 00200458)
Chapter 2. Log Message Reference
104