Print

Please login or register.
1 Hour 1 Day 1 Week 1 Month Forever
Login with username, password and session length

[Quackerback]

Is there any document out there with a description of common log messages?  Looking at my log to see if I can find any explanation for occasional slow internet response and I see lots of entries like this:

"Dropped TCP packet from 17. ... to 192. ... as unable to modify header options."

and this:

"Wireless system with MAC address 002608A66903 disconnected for reason: Received Deauthentication."

I'd like to know what they mean and especially if they indicate someone trying to get into our system.

[EddieZ]

Is there any document out there with a description of common log messages?  Looking at my log to see if I can find any explanation for occasional slow internet response and I see lots of entries like this:

"Dropped TCP packet from 17. ... to 192. ... as unable to modify header options."

and this:

"Wireless system with MAC address 002608A66903 disconnected for reason: Received Deauthentication."

I'd like to know what they mean and especially if they indicate someone trying to get into our system.

Hint: take 'm literally. This one means that  a wireless device on the LAN has closed a connection with the router.

[Sammydad1]

Using MAC numbers is a DLink choice....several items in the logs would be much more readable if they had used IP addy's instead.

What you need is to keep a listing of your MACs as they relate to IPs so you can do a quick reference and see if some other MAC is showing up.

MAC filtering will usually do this for you, but it can be hacked, or rather spoofed by somebody who knows their stuff.  If you are in fear of such a person on your LAN, you should be using WPA2 wireless encryption (with AES cipher) to begin with...  This is also how you work towards the promised land of 300 Mbps wireless anyhow...