ZyXEL Communications ZyWALL5UTM 4.0 ユーザーズマニュアル

ZyWALL 5/35/70 Series User’s Guide

791 

Appendix S Log Descriptions

The following table shows RFC-2408 ISAKMP payload types that the log displays. Please 
refer to the RFC for detailed information on each type. 

Table 299   RFC-2408 ISAKMP Payload Types 

SA

Security Association

PROP

Proposal

TRANS

Transform

KE

Key Exchange

ID

Identification

CER

Certificate

CER_REQ

Certificate Request

HASH

Hash

SIG

Signature

NONCE

Nonce

NOTFY

Notification

DEL

Delete

VID

Vendor ID

Event Log: <Facility*8 + 
Severity>Mon dd hr:mm:ss 
hostname src="<srcIP:srcPort>" 
dst="<dstIP:dstPort>" 
ob="<0|1>" ob_mac="<mac 
address>" msg="<msg>" 
note="<note>" devID="<mac 
address>" cat="IDP" 
class="<idp class>" sid="<idp 
sid> act="<idp action>" 
count="1"

This message is sent by the device ("RAS" displays as the 
system name if you haven’t configured one) at the time 
when this syslog is generated. The facility is defined in the 
web MAIN MENU, LOGS, Log Settings page. The severity 
is the log’s syslog class. The definition of messages and 
notes are defined in the IDP log descriptions.

Event Log: <Facility*8 + 
Severity>Mon dd hr:mm:ss 
hostname src="<srcIP:srcPort>" 
dst="<dstIP:dstPort>" 
ob="<0|1>" ob_mac="<mac 
address>" msg="<msg>" 
note="<note>" devID="<mac 
address>" cat="Anti Spam" 
1stReIP="<IP>"

This message is sent by the device ("RAS" displays as the 

system name if you haven’t configured one) at the time 

when this syslog is generated. The facility is defined in the 

web MAIN MENU, LOGS, Log Settings page. The severity 

is the log’s syslog class. 1stReIP is the IP address of the 

first mail relay server. The definition of messages and notes 

are defined in the Anti-Spam log descriptions.

Table 298   Syslog Logs (continued)