Cisco Cisco Web Security Appliance S170 사용자 가이드

The following table contains a list of the various updater alerts that can be generated by AsyncOS, 
including a description of the alert and the alert severity:  

For information about alerts related to Advanced Malware Protection, see 

. 

Tech support: Service tunnel has been disabled.

Information. 

Not applicable.

The host at $ip has been added to the blacklist 
because of an SSH DOS attack.

The host at $ip has been permanently added to 
the ssh whitelist. 

The host at $ip has been removed from the 
blacklist 

Warning. 

$ip - IP address from which a login attempt 
occurred. 

Description: 

IP addresses that try to connect to the 
appliance over SSH but do not provide valid 
credentials are added to the SSH blacklist if 
more than 10 failed attempts occur within two 
minutes. 

When a user logs in successfully from the same 
IP address, that IP address is added to the 
whitelist. 

Addresses on the whitelist are allowed access 
even if they are also on the blacklist. 

Entries are automatically removed from the 
blacklist after about a day. 

The $app application tried and failed $attempts 
times to successfully complete an update. This may 
be due to a network configuration issue or 
temporary outage.

Warning. 

$app: Web Security appliance security service 
name.

$attempts: Number of attempts tried.

The updater has been unable to communicate with 
the update server for at least $threshold.

Warning. 

$threshold: Threshold value time.

Unknown error occurred: $traceback.

Critical. 

$traceback: Traceback information.