Table B-4 lists all the severity level 4 logging messages, along with their message numbers and text. All the messages supported by PIX OS releases 6.3 and 7.0, as well as FWSM 2.3, are shown.
Table B-4. Severity 4 (Warnings) Logging Messages
%PIX-4-106023 | Deny protocol src [interface_name:source_address/source_port] dst interface_name:dest_address/dest_port [type {string}, code {code}] by access_group acl_ID. |
%PIX-4-106027 | Failed to determine the security context for the packet:vlansource Vlan#:ethertype src sourceMAC dst destMAC. (7.0) |
%PIX-4-106101 | Maximum number of ACL denied flows reached. |
%PIX-4-109017 | User at IP_address exceeded auth proxy connection limit (max). |
%PIX-4-109022 | Exceeded HTTPS proxy process limit. |
%PIX-4-109027 | [aaa protocol] Unable to decipher response message Server = server_IP_address, User = username. (7.0) |
%PIX-4-209003 | Fragment database limit of number exceeded: src = IP_address, dest = IP_address, proto = protocol, id = number. |
%PIX-4-209004 | Invalid IP fragment, size = bytes exceeds maximum size = bytes: src = IP_address, dest = IP_address, proto = protocol, id = number. |
%PIX-4-209005 | Discard IP fragment set with more than number elements: src = IP_address, dest = IP_address, proto = protocol, id = number. |
%FWSM-4-307004 | Telnet session limit exceeded. Connection request from IP_address on interface interface_name. |
%PIX-4-308002 | Static global_address inside_address netmask netmask overlapped with global_address inside_address. |
%FWSM-4-309004 | Manager session limit exceeded. Connection request from IP_address on interface interface_name. |
%PIX-4-313003 | Invalid destination for ICMP error. |
%PIX-4-313004 | Denied ICMP type=icmp_type, from src_IP_address on interface interface_name to dest_IP_address:no matching session. (7.0) |
%FWSM-4-315005 | SH session limit exceeded. Connection request from IP_address on interface interface_name. |
%PIX-4-325002 | Duplicate address ipv6_address/mac_address on interface. (7.0) |
%PIX-4-400000-%PIX-4-400051 | IDS: signature_number signature_message from IP_address to IP_address on interface interface_name. |
%PIX-4-401000 | Unknown message text. (7.0) |
%PIX-4-401001 | Shuns cleared. |
%PIX-4-401002 | Shun added: IP_address IP_address port port. |
%PIX-4-401003 | Shun deleted: IP_address. |
%PIX-4-401004 | Shunned packet: IP_address ==> IP_address on interface interface_name. |
%PIX-4-401005 | Shun add failed: unable to allocate resources for IP_address IP_address port port. |
%PIX-4-402101 | Decaps: rec'd IPSEC packet has invalid spi for destaddr=dest_address, prot=protocol, spi=number. |
%PIX-4-402102 | Decapsulate: packet missing {AH | ESP}, destadr=dest_address, actual prot=protocol. |
%PIX-4-402103 | Identity doesn't match negotiated identity (ip) dest_address= dest_address, src_addr= source_address, prot= protocol, (ident) local=inside_address, remote=remote_address, local_proxy=IP_address/IP_address/port/port, remote_proxy=IP_address/IP_address/port/port. |
%PIX-4-402104 | Unknown message text. (7.0) |
%PIX-4-402106 | Rec'd packet not an IPSEC packet (ip) dest_address= dest_address, src_addr= source_address, prot= protocol. |
%PIX-4-402107 | Unknown message text. (7.0) |
%PIX-4-403101 | PPTP session state not established, but received an XGRE packet, tunnel_id=number, session_id=number. |
%PIX-4-403102 | PPP virtual interface interface_name rcvd pkt with invalid protocol: protocol, reason: reason. |
%PIX-4-403103 | PPP virtual interface max connections reached. |
%PIX-4-403104 | PPP virtual interface interface_name requires mschap for MPPE. |
%PIX-4-403106 | PPP virtual interface interface_name requires RADIUS for MPPE. |
%PIX-4-403107 | PPP virtual interface interface_name missing aaa server group info. |
%PIX-4-403108 | PPP virtual interface interface_name missing client ip address option. |
%PIX-4-403109 | Rec'd packet not a PPTP packet. (ip) dest_address= dest_address, src_addr= source_address, data: string. |
%PIX-4-403110 | PPP virtual interface interface_name, user: user missing MPPE key from aaa server. |
%PIX-4-403505 | PPPoE:PPPUnable to set default route to IP_address at interface_name. (7.0) |
%PIX-4-403506 | PPPoE: Failed to assign PPP IP_address netmask netmask at interface_name. (7.0) |
%PIX-4-404101 | ISAKMP: Failed to allocate address for client from pool string. |
%PIX-4-405001 | Received ARP {request | response} collision from IP_address/mac_address on interface interface_name. |
%PIX-4-405002 | Received mac mismatch collision from IP_address/mac_address for authenticated host. |
%PIX-4-405101 | Unable to Pre-allocate H225 Call Signalling Connection for foreign_address outside_address[/outside_port] to local_address inside_address[/inside_port]. |
%PIX-4-405102 | Unable to Pre-allocate H245 Connection for foreign_address outside_address[/outside_port] to local_address inside_address[/inside_port]. |
%PIX-4-405103 | H225 message from src_ip/src_port to dest_ip/dest_prot contains bad protocol discriminator hex_value. (7.0) |
%PIX-4-405104 | H225 message received from outside_address/outside_port to inside_address/inside_port before SETUP. |
%PIX-4-405105 | H323 RAS message AdmissionConfirm received from source_IP_ address/source_port to destination_IP_address/destination_port without an AdmissionRequest. (7.0) |
%PIX-4-405201 | ILS ILS_message_type from inside_interface:source_IP_address to outside_interface:/destination_IP_address has wrong embedded address embedded_IP_address. (7.0) |
%PIX-4-406000 | Unknown message text. (7.0) |
%PIX-4-406001 | FTP port command low port: IP_address/port to IP_address on interface interface_name. |
%PIX-4-406002 | FTP port command different address: IP_address(IP_address) to IP_address on interface interface_name. |
%PIX-4-407001 | Deny traffic for local-host interface_name:inside_address, license limit of number exceeded. |
%PIX-4-407002 | Embryonic limit neconns/elimit for through connections exceeded: outside_address/outside_port to global_address (inside_address)/inside_port on interface interface_name. (7.0) |
%PIX-4-407003 | Established limit for RPC services exceeded number. (7.0) |
%PIX-4-408001 | IP route counter negativereason, IP_address Attempt: number. |
%PIX-4-408002 | ospf process id route type update address1 mask1 [distance1/metric1] via source IP:interface1 address2 mask2 [distance2/metric2]. (7.0) |
%PIX-4-409001 | Database scanner: external LSA IP_address netmask is lost, reinstalls. |
%PIX-4-409002 | db_free: external LSA IP_address netmask. |
%PIX-4-409003 | Received invalid packet: reason from IP_address, interface_name. |
%PIX-4-409004 | Received reason from unknown neighbor IP_address. |
%PIX-4-409005 | Invalid length number in OSPF packet from IP_address (ID IP_address), interface_name. |
%PIX-4-409006 | Invalid lsa: reason Type number, LSID IP_address from IP_address, IP_address, interface_name. |
%PIX-4-409007 | Found LSA with the same host bit set but using different mask LSA ID IP_address netmask New: Destination IP_address netmask. |
%PIX-4-409008 | Found generating default LSA with non-zero mask LSA type : number Mask : IP_address metric : number area : string. |
%PIX-4-409009 | OSPF process number cannot start. There must be at least one up IP interface, for OSPF to use as router ID. |
%PIX-4-409010 | Virtual link information found in non-backbone area: string. |
%PIX-4-409011 | OSPF detected duplicate router-id IP_address from IP_address on interface interface_name. |
%PIX-4-409012 | Detected router with duplicate router ID IP_address in area string. |
%PIX-4-409013 | Detected router with duplicate router ID IP_address in Type-4 LSA advertised by IP_address. |
%PIX-4-409023 | Attempting AAA Fallback method method_name for request_type request for user username :Auth-server group server_tag unreachable. (7.0) |
%PIX-4-410001 | UDP DNS packet dropped due to domain name length check of 255 bytes: actual length:n bytes. |
%PIX-4-411001 | Line protocol on interface interface_name changed state to up. (7.0) |
%PIX-4-411002 | Line protocol on interface interface_name changed state to down. (7.0) |
%PIX-4-411003 | Configuration status on interface interface_name changed state to downup. (7.0) |
%PIX-4-411004 | Configuration status on interface interface_name changed state to up. (7.0) |
%PIX-4-412001 | MAC mac-address moved from interface-1 to interface-2. (7.0) |
%PIX-4-412002 | Detected bridge table full while inserting MAC mac-address on interface interface. Number of entries = num. (7.0) |
%PIX-4-413001 | Module in slot slotnum is not able to shut down. Module Error: errnum message. (7.0) |
%PIX-4-413002 | Module in slot slotnum is not able to reload. Module Error: errnum message. (7.0) |
%PIX-4-413003 | Module in slot slotnum is not a recognized type. (7.0) |
%PIX-4-416001 | Dropped UDP SNMP packet from source_interface:source_IP/source_port to dest_interface:dest_IP/dest_port; version (version) is not allowed through the firewall. (7.0) |
%PIX-4-417001 | Unexpected event received: number. (7.0) |
%PIX-4-417002 | Unknown message text. (7.0) |
%PIX-4-417003 | Unknown message text. (7.0) |
%PIX-4-417004 | Filter violation error: conn number (string:string) in string. (7.0) |
%PIX-4-417005 | Unknown message text. (7.0) |
%PIX-4-417006 | No memory for string in string. Handling: string. (7.0) |
%PIX-4-417007 | Unknown message text. (7.0) |
%PIX-4-418001 | Through-the-device packet to/from management-only network is denied: prot_str from ifc_name ip (port) to ifc_name ip (port). (7.0) |
%PIX-4-500004 | Invalid transport field for protocol=protocol, from source_address/source_port to dest_address/dest_port. |
%PIX-4-507001 | Terminating TCP-Proxy connection from ifc_in:sip/sport to ifc_out:dip/dportreassembly limit of limit bytes exceeded. (7.0) |
%FWSM-4-605002 | HTTP daemon connection limit exceeded. |
%PIX-4-612002 | Auto Update failed:filename, version:number, reason:reason. |
%PIX-4-612003 | Auto Update failed to contact:url, reason:reason. |
%PIX-4-620002 | Unsupported CTIQBE version: hex: from interface_name:IP_address/port to interface_name:IP_address/port. |
%PIX-4-710004 | TCP connection limit exceeded from source_address/source_port to interface_name:dest_address/service. |
%PIX-4-713154 | DNS lookup for peer description Server [server name] failed! (7.0) |
%PIX-4-713157 | Timed out on initial contact to server [server name or IP address] Tunnel could not be established. (7.0) |
%PIX-4-713207 | Unknown message text. (7.0) |
%PIX-4-713903 | Descriptive_event_string. (7.0) |
%PIX-4-716007 | Group name User user WebVPN session terminated. Maximum time exceeded. (7.0) |
%PIX-4-716022 | WebVPN filter setup has returned an error acl. (7.0) |
%PIX-4-716023 | Group name User user Session could not be established: session limit of max_sess reached. (7.0) |