From: Paul Cocker (pcocker@gmail.com)
Date: Tue Sep 16 2008 - 04:36:11 ART
Looks like the protocol number to me. Instead of UDP (17) or ICMP (1) it
could have said ESP, but it put the number in instead.
http://www.iana.org/assignments/protocol-numbers/
1 ICMP Internet Control Message [RFC792]
17 UDP User Datagram
[RFC768][JBP]
50 ESP Encap Security Payload [RFC2406]
Good luck with the tunnel I guess :-)
-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of Abu
Bucker
Sent: 16 September 2008 07:02
To: Groupstudy
Subject: ACL Log mystery
Dear All,
I am getting the folowing logs related to ACL on my router.
Sep 16 08:53:18.927: %SEC-6-IPACCESSLOGP: list incoming denied tcp
.........................
*Sep 16 08:57:25.751: %SEC-6-IPACCESSLOGNP: list incoming denied 50
...................
Sep 16 08:57:25.751: %SEC-6-IPACCESSLOGNP: list incoming denied
50...............
*Sep 16 08:58:25.755: %SEC-6-IPACCESSLOGP: list incoming denied
tcp .....................
*Sep 16 09:05:25.751: %SEC-6-IPACCESSLOGNP: list incoming denied 50
..............
*Sep 16 09:15:25.751: %SEC-6-IPACCESSLOGNP: list incoming denied
50..............
*Sep 16 09:18:25.751: %SEC-6-IPACCESSLOGDP: list incoming denied icmp
.................
"incoming" is the name ACL applied on the outside interface in the incoming
direction.
I am not able to understand the "50" (highlighted above).
I would appreciate if anyone could help me in understanding the above.
Regards,
Abu Bucker
Blogs and organic groups at http://www.ccie.net
This archive was generated by hypermail 2.1.4 : Sat Oct 04 2008 - 09:26:18 ART