MonitorWare Knowledge Base
Your first source for knowledge
Winsyslog Error Message Decoder
Moderator: alorbach
4 posts • Page 1 of 1
Winsyslog Error Message Decoder
by paulnoga on Mon Jul 28, 2003 8:16 pm
I am a fairly new user of Winsyslog. Is there a Winsyslog message decoder? I would really appreciate an message decoder with a possible solution answer.
- paulnoga
by Guest on Tue Jul 29, 2003 5:20 pm
Thanks for replying. For example
Jul 29 09:12:54 65.120.43.84 RealSource:"65.120.43.84" WARNING [USG v4.2.111] USG_DNS: ndxService::processKnownNames(): dnsIsQueryA() failed
Jul 29 09:14:17 63.149.192.154 SEC-6-IPACCESSLOGPRealSource:"63.149.192.154" 104002: Jul 29 16:14:16: %SEC-6-IPACCESSLOGP: list 110 denied tcp 209.53.213.35(3738) -> 209.211.145.239(445), 1 packet
These were both warning messages. Do I need to worry? Is there something I need to do?
Jul 29 09:16:47 65.120.43.84 RealSource:"65.120.43.84" ERROR [USG v4.2.111] USG_HRS: 3009 HRS_Object ERROR_returned_by_HRS_GetRequestMethod
This was an error message.
There are Many other messages I really can't decipher. Is there a message decoder I can understand what the messages mean and how to (if needed) fix it?
Thanks
Paul
Jul 29 09:12:54 65.120.43.84 RealSource:"65.120.43.84" WARNING [USG v4.2.111] USG_DNS: ndxService::processKnownNames(): dnsIsQueryA() failed
Jul 29 09:14:17 63.149.192.154 SEC-6-IPACCESSLOGPRealSource:"63.149.192.154" 104002: Jul 29 16:14:16: %SEC-6-IPACCESSLOGP: list 110 denied tcp 209.53.213.35(3738) -> 209.211.145.239(445), 1 packet
These were both warning messages. Do I need to worry? Is there something I need to do?
Jul 29 09:16:47 65.120.43.84 RealSource:"65.120.43.84" ERROR [USG v4.2.111] USG_HRS: 3009 HRS_Object ERROR_returned_by_HRS_GetRequestMethod
This was an error message.
There are Many other messages I really can't decipher. Is there a message decoder I can understand what the messages mean and how to (if needed) fix it?
Thanks
Paul
- Guest
by wrehman on Wed Jul 30, 2003 6:19 am
Hello,
Ok, now i understand what you mean. Generally, the information messages can be neglected. Security, Error (and sometimes Warning) messages are important but that really depends upon the situation and on the business you are in.
There are lots and lots of events that can be generated by either Windows or any other syslog device. What you can do with WinSyslog is that you can collect all the data at one point and you can also define certain actions when a certain event happens. As i said, that aciton *totally* varies from person to person and also from business to business. You would have to do a little research on which events might be problematic in your environment so that whenever they happen, you should be notified by, lets say, net send or via email.
Secondly, WinSyslog is a collection tool which collects the data and also can notify when a specific event happens (plus it can also do some other tasks ). The point to note is that its NOT an Analytical tool.
In our line of products we have 2 Analytical tools.
1. Monilog: It generates one report and gives a summary of your system. For more information, kindly visit:
http://www.monilog.com/
2. MonitorWare Console: This is our latest tool which is purely an Analytical tool. It has very strong features. It generates lot of Intelligent reports which tell you if something is wrong with your system or not. For example, one of its report is "Dictionary Attack" reports which tells you if someone has been trying to enter your system or not. Another report is the one which tells you a complete summary of your system. It also offers a Views module in which you can view the data of your own choise be defining very powerful filters. There are also some network tools present in it. For more details on it kindly see:
http://www.mwconsole.com/en/
Note that you can also download these products for Free and evaluate them.
I hope I have answered your query. If you need any further assistance, please dont hesitate to contact us.
Best Regards
Wajih-ur-Rehman
Adiscon
Ok, now i understand what you mean. Generally, the information messages can be neglected. Security, Error (and sometimes Warning) messages are important but that really depends upon the situation and on the business you are in.
There are lots and lots of events that can be generated by either Windows or any other syslog device. What you can do with WinSyslog is that you can collect all the data at one point and you can also define certain actions when a certain event happens. As i said, that aciton *totally* varies from person to person and also from business to business. You would have to do a little research on which events might be problematic in your environment so that whenever they happen, you should be notified by, lets say, net send or via email.
Secondly, WinSyslog is a collection tool which collects the data and also can notify when a specific event happens (plus it can also do some other tasks ). The point to note is that its NOT an Analytical tool.
In our line of products we have 2 Analytical tools.
1. Monilog: It generates one report and gives a summary of your system. For more information, kindly visit:
http://www.monilog.com/
2. MonitorWare Console: This is our latest tool which is purely an Analytical tool. It has very strong features. It generates lot of Intelligent reports which tell you if something is wrong with your system or not. For example, one of its report is "Dictionary Attack" reports which tells you if someone has been trying to enter your system or not. Another report is the one which tells you a complete summary of your system. It also offers a Views module in which you can view the data of your own choise be defining very powerful filters. There are also some network tools present in it. For more details on it kindly see:
http://www.mwconsole.com/en/
Note that you can also download these products for Free and evaluate them.
I hope I have answered your query. If you need any further assistance, please dont hesitate to contact us.
Best Regards
Wajih-ur-Rehman
Adiscon
-
wrehman - Adiscon Support
- Posts: 75
- Joined: Tue Mar 18, 2003 9:30 am
4 posts • Page 1 of 1
Who is online
Users browsing this forum: No registered users and 0 guests
