System Log Message Differences
From DocWiki
System Log Message Differences
The following system log messages are deprecated in ASA but not in FWSM:
1. %FWSM-6-303003: FTP cmd_name command denied - failed strict
- inspection, terminating connection from
- source_interface:source_address/source_port to
- dest_interface:dest_address/dest_port
2. %FWSM-4-313003: Invalid destination for ICMP error
The following system log messages are present in FWSM but not in ASA:
1. %FWSM-6-106028: Deny TCP (Connection marked for deletion)
- from src ip-address/src-port to dst ip-address/dst-port
- flags flag on interface intf-name
2. %FWSM-4-109036: Teardown protocol connection session_id for
- src_if:src_ip/src_port to dest_if:dest_ip/dest_port
- duration duration bytes bytes due to Uauth timeout
3. %FWSM-4-109037: Authentication cannot be done for the user
- from src_ip to dest_ip for application since auth_proto
- client is too busy
4. %FWSM-4-109039: Func_ID: Uauth Unproxy Failed due to the
- reason: Failed_Reason
5. %FWSM-3-202012: Connection rate limit exceeded conns/rate-limit
- (per seconds) for dir packet from source_address/source_port to
- dest_address/dest_port on interface interface_name
6. %FWSM-6-302022: Built IP protocol 103 connection 219025360
- for int_112:172.16.2.1 (172.16.2.1) to int_102:172.16.112.2
- (172.16.112.2)
7. %FWSM-6-302023: Teardown IP protocol 103 connection
- 219025359 for int_102:172.16.2.1 to int_112:172.16.112.2
- duration 0:00:35 bytes 74
8. FWSM-6-622002:%d: Teardown BGP Peering session with %A
- and AS #%d\n, BGP_PEER_SES_TEAR_DOWN
9. %FWSM-2-709008: Configuration may be out of sync between
- Active/Standby units
The following table shows system log messages that are present in both FWSM and ASA software, but the text in FWSM software is different from that in ASA software.
| FWSM | ASA |
|---|---|
| %FWSM-6-302024: Pre-allocated H323 GUP connection for faddr intf: {foreign-address /foreign-port} to laddr intf: {local-address/local-port} | %ASA-6-302033:Pre-allocated H323 GUP Connection for faddr interface:foreign address/foreign-port to laddr interface:local-address/local-port |
| %FWSM-4-302025: Unable to Pre-allocate H323 GUP Connection for faddr
intf: {foreign-address/foreign-port} to laddr intf: {local-address/local-port} | %ASA-4-302034: Unable to pre-allocate H323 GUP Connection for faddr
interface: foreign address/foreign-port to laddr interface:local-address/local-port |
| %FWSM-4-109035: Authentication failed for user username as the password expired | %ASA-3-109035: Exceeded maximum number (999) of DAP attribute instances for user string. |
| %FWSM-6-609001: Built local-hostinterface_name:IP_address | %ASA-7-609001: Built local-hostinterface_name:IP_address |
| %FWSM-6-609002: Teardown local-host interface_name:IP_address duration time | %ASA-7-609002: Teardown local-host interface_name:IP_address duration time |
| FWSM-6-622001:%d: Built BGP Peering session with %A and AS #%d\n, BGP_PEER_SES_ESTABLISH | %ASA-6-622001: string tracked route network mask address, distance number, table string, on interface interface-name |
