DNSE-310
Prev Kernun UTM Reference (6) Next

Name

DNSE-310 — Received query length exceeds allowed size

Severity

A (alert)

Message text

Query larger than %1 bytes

Description

Proxy stores the incoming query into a fixed-length buffer. This message reports a situation when the incoming request size is greater than the buffer size. There are several cases:

  • UDP requests: the message does not contain the exact length, the full dump of the query follows (if W-level is allowed)

  • TCP requests smaller than the CLIENT-CONN.RECV-BUFSIZE value: the message contains the exact length, the full dump of the query follows (if W-level is allowed)

  • TCP requests greater than the CLIENT-CONN.RECV-BUFSIZE value: the message does not contain the exact length, the full dump is not logged.

In the first two cases, the request is replied with the NotImp response code. In the last case, the session is simply terminated.

See also

logging(7)

Authors

This man page is a part of Kernun Firewall.
Copyright © 2000–2023 Trusted Network Solutions, a. s.
All rights reserved.

Prev Up Next
DNSE-309 Home DNSE-340