These log messages refer to the IDPUPDATE (Intrusion Detection & Prevention Database update) category.
2.30.1. idp_db_update_failure (ID: 01400001)
- Default Severity
- ALERT
- Log Message
- Update of the Intrusion Detection & Prevention database failed, because of <reason>
- Explanation
- The unit tried to update the Intrusion Detection & Prevention database, but failed. The reason for this is specified in the
"reason" parameter.
- Firewall Action
- None
- Recommended Action
- None
- Revision
- 1
- Parameters
- reason
2.30.2. idp_database_downloaded (ID: 01400002)
- Default Severity
- NOTICE
- Log Message
- New Intrusion Detection & Prevention database downloaded
- Explanation
- An updated version of the Intrusion Detection & Prevention database has been downloaded, which will now be used.
- Firewall Action
- using_new_database
- Recommended Action
- None
- Revision
- 2
2.30.3. idp_db_already_up_to_date (ID: 01400003)
- Default Severity
- NOTICE
- Log Message
- Intrusion Detection & Prevention database is up-to-date
- Explanation
- The current Intrusion Detection & Prevention database is up-to-date and does not need to be updated.
- Firewall Action
- None
- Recommended Action
- None
- Revision
- 1
2.30.4. idp_db_update_denied (ID: 01400004)
- Default Severity
- NOTICE
- Log Message
- Intrusion Detection & Prevention database could not be updated, as no valid subscription exist
- Explanation
- The current license does not allow Intrusion Detection & Prevention database to be updated.
- Firewall Action
- None
- Recommended Action
- Check the system's time and/or purchase a subscription.
- Revision
- 1
2.30.5. idp_detects_invalid_system_time (ID: 01400005)
- Default Severity
- ERROR
- Log Message
- System clock is not properly set. Invalid date (<date>) in IDP signature file. IDP disabled
- Explanation
- The system clock is not up to date. The system clock must be set correctly in order to use the IDP features. IDP features
remains disabled until clock is correct and a manual IDP update has been performed.
- Firewall Action
- idp_disabled
- Recommended Action
- Check and set the system time correct and perform a manual IDP update.
- Revision
- 1
- Parameters
- date
2.30.6. downloading_new_database (ID: 01400007)
- Default Severity
- NOTICE
- Log Message
- Downloading new IDP database
- Explanation
- A new IDP database is available. The database is being downloaded.
- Firewall Action
- downloading_new_database
- Recommended Action
- None
- Revision
- 1
2.30.7. sigfile_parser_error (ID: 01400018)
- Default Severity
- WARNING
- Log Message
- Signature file is corrupted and will be removed.
- Explanation
- An error occured while parsing signature file. Thus, it needs to be removed and new file will be downloaded from update servers.
- Firewall Action
- sigfile_delete
- Recommended Action
- None
- Revision
- 1
cOS Core 15.00.01 Log Reference Guide
