From: Ali Mousawi (mousawi.ali@gmail.com)
Date: Tue Sep 16 2008 - 04:01:29 ART
Hi Abu Bucker,
this is the protocol number being denied.
Since 50 and 51 are not well known protocols by the router it will be shown
as numbers rather than names such as tcp or icmp.
50 is for ESP and 51 is for AH both are authentecation methods used in
IPSEC.
HTH
Ali
On Mon, Sep 15, 2008 at 11:02 PM, Abu Bucker <abu.bucker@gmail.com> wrote:
> Dear All,
> I am getting the folowing logs related to ACL on my router.
> Sep 16 08:53:18.927: %SEC-6-IPACCESSLOGP: list incoming denied tcp
> .........................
>
> *Sep 16 08:57:25.751: %SEC-6-IPACCESSLOGNP: list incoming denied 50
> ...................
>
> Sep 16 08:57:25.751: %SEC-6-IPACCESSLOGNP: list incoming denied
> 50...............
>
> *Sep 16 08:58:25.755: %SEC-6-IPACCESSLOGP: list incoming denied
> tcp .....................
>
> *Sep 16 09:05:25.751: %SEC-6-IPACCESSLOGNP: list incoming denied 50
> ..............
>
> *Sep 16 09:15:25.751: %SEC-6-IPACCESSLOGNP: list incoming denied
> 50..............
>
> *Sep 16 09:18:25.751: %SEC-6-IPACCESSLOGDP: list incoming denied icmp
> .................
>
> "incoming" is the name ACL applied on the outside interface in the incoming
> direction.
>
> I am not able to understand the "50" (highlighted above).
>
> I would appreciate if anyone could help me in understanding the above.
>
> Regards,
>
> Abu Bucker
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
Blogs and organic groups at http://www.ccie.net
This archive was generated by hypermail 2.1.4 : Sat Oct 04 2008 - 09:26:18 ART