Fortinet white logo
Fortinet white logo

FortiOS Log Message Reference

What's new

What's new

This section identifies major changes in the Log Reference from version 6.4.0 and later. For more information about new features, please see the FortiOS 6.4 New Features Guide.

FortiOS 6.4.14

There are no major log changes between FortiOS 6.4.13 and 6.4.14.

FortiOS 6.4.13

Log ID changes

The following log IDs are changed.

Event logs:

LogID

Message

Change

20230

LOG_ID_SYS_SECURITY_WRITE_VIOLATION

Log ID Added

20231

LOG_ID_SYS_SECURITY_HARDLINK_VIOLATION

Log ID Added

20232

LOG_ID_SYS_SECURITY_LOAD_MODULE_VIOLATION

Log ID Added

20233

LOG_ID_SYS_SECURITY_FILE_HASH_MISSING

Log ID Added

20234

LOG_ID_SYS_SECURITY_FILE_HASH_MISMATCH

Log ID Added

41009

LOG_ID_UPD_DB_SIGN_INVALID

Log ID Added

FortiOS 6.4.12

There are no major log changes between FortiOS 6.4.11 and 6.4.12.

FortiOS 6.4.11

There are no major log changes between FortiOS 6.4.10 and 6.4.11.

FortiOS 6.4.10

Log ID changes

The following log IDs are changed.

Event logs:

LogID

Message

Change

20027

LOG_ID_REPORT_DEL_OLD_REC

Log ID Removed

32262

LOG_ID_RESTORE_IMG_CONFIRM

Log ID Added

37911

MESGID_FGSP_MEMBER_JOIN

Log ID Added

37912

MESGID_FGSP_MEMBER_LEAVE

Log ID Added

FortiOS 6.4.9

Log field values

The following log field values changed.

Traffic logs:

Field

Change

dstreputation

Field Added

srcreputation

Field Added

Log ID changes

The following log IDs are changed.

Event logs:

LogID

Message

Change

22114

LOG_ID_POWER_REDUNDANCY_DEGRADE

Log ID Added

22115

LOG_ID_POWER_REDUNDANCY_FAILURE

Log ID Added

22807

LOG_ID_VDOM_LIC

Log ID Added

32262

LOG_ID_RESTORE_IMG_CONFIRM

Log ID Added

34428

LOG_ID_NP7_HPE_PACKET_DROP

Log ID Added

34430

LOG_ID_NP7_HPE_PACKET_FLOOD

Log ID Added

38420

LOGID_EVENT_HTTPS_CONNECTION

Log ID Added

53311

LOG_ID_NPU_PER_MAPPING_ALLOCATION

Log ID Added

FortiOS 6.4.8

There are no major log changes between FortiOS 6.4.7 and 6.4.8.

FortiOS 6.4.7

Log ID changes

The following log IDs are changed.

Event logs:

LogID

Message

Change

53312

LOG_ID_NPD_INFO

Log ID Added

53313

LOG_ID_NPD_WARNING

Log ID Added

53314

LOG_ID_NPD_ERROR

Log ID Added

FortiOS 6.4.6

Log ID changes

The following log IDs are changed.

Event logs:

LogID

Message

Change

34418

LOG_ID_NP6_HPE_PACKET_DROP

Log ID Added

34419

LOG_ID_NP6_HPE_PACKET_FLOOD

Log ID Added

43707

LOG_ID_EVENT_WIRELESS_WTPR_SSID_UP

Log ID Added

43708

LOG_ID_EVENT_WIRELESS_WTPR_SSID_DOWN

Log ID Added

FortiOS 6.4.5

Log ID changes

The following log IDs are changed.

Event logs:

LogID

Message

Change

45120

LOG_ID_EC_INVALID_EMS_TAG_REFERENCED

Log ID Removed

53203

LOG_ID_CONNECTOR_OBJECT_UPDATE

Log ID Added

53204

LOG_ID_CONNECTOR_OBJECT_CANT_ADD

Log ID Added

53205

LOG_ID_CONNECTOR_OBJECT_CANT_REMOVE

Log ID Added

FortiOS 6.4.4

There are no major log changes between FortiOS 6.4.3 and 6.4.4.

FortiOS 6.4.3

Log field values

The following log field values are changed.

AV logs:

Field

Change

attachment

Field Added

cc

Field Added

subject

Field Added

DLP logs:

Field

Change

attachment

Field Added

cc

Field Added

Event logs:

Field

Change

operdrmamode

Field Added

slctdrmamode

Field Added

useralt

Field Added

FILE-FILTER logs:

Field

Change

attachment

Field Added

cc

Field Added

Traffic logs:

Field

Change

vwlname

Field Added

Log ID changes

The following log IDs are changed.

Event logs:

LogID

Message

Change

22954

LOG_ID_INET_SVC_OBSOLETE

Log ID Added

32096

LOG_ID_GUI_DOWNLOAD_LOG

Log ID Added

40706

LOG_ID_EVENT_SYS_BROKEN_SYMBOLIC_LINK

Log ID Added

43693

LOG_ID_EVENT_WIRELESS_STA_WNM_ACTION_BSTM_REQ

Log ID Added

43694

LOG_ID_EVENT_WIRELESS_STA_WNM_ACTION_BSTM_RESP_ACCEPT

Log ID Added

43695

LOG_ID_EVENT_WIRELESS_STA_WNM_ACTION_BSTM_RESP_REJECT

Log ID Added

43696

LOG_ID_EVENT_WIRELESS_WTPR_DRMA_START

Log ID Added

43697

LOG_ID_EVENT_WIRELESS_WTPR_DRMA_STOP

Log ID Added

43698

LOG_ID_EVENT_WIRELESS_WTPR_DRMA_MODE

Log ID Added

43699

LOG_ID_EVENT_WIRELESS_STA_DHCP6_SOLICIT

Log ID Added

43700

LOG_ID_EVENT_WIRELESS_STA_DHCP6_ADVERTISE

Log ID Added

43701

LOG_ID_EVENT_WIRELESS_STA_DHCP6_REQUEST

Log ID Added

43702

LOG_ID_EVENT_WIRELESS_STA_DHCP6_CONFIRM

Log ID Added

43703

LOG_ID_EVENT_WIRELESS_STA_DHCP6_RENEW

Log ID Added

43704

LOG_ID_EVENT_WIRELESS_STA_DHCP6_REPLY

Log ID Added

43705

LOG_ID_EVENT_WIRELESS_STA_DHCP6_RELEASE

Log ID Added

43706

LOG_ID_EVENT_WIRELESS_STA_DHCP6_RECONFIGURE

Log ID Added

53202

LOG_ID_CONNECTOR_API_FAILED

Log ID Added

FortiOS 6.4.2

Log field values

The following log field values are changed.

Event logs:

Field

Change

bibandwidthused

Field Added

inbandwidthused

Field Added

outbandwidthused

Field Added

Email logs:

Field

Change

webmailprovider

Field Added

GTP logs:

Field

Change

cggsn6

Field Added

cgsn6

Field Added

cpaddr6

Field Added

cpdladdr6

Field Added

cpdlisraddr6

Field Added

cpuladdr6

Field Added

csgsn6

Field Added

from6

Field Added

to6

Field Added

uggsn6

Field Added

ugsn6

Field Added

usgsn6

Field Added

DNS logs:

Field

Change

rcode

Field Added

Traffic logs:

Field

Change

dstgroup

Field Removed

tunnelid

Field Added

Log ID changes

The following log IDs are changed.

AV logs:

LogID

Message

Change

8981

MESGID_SCAN_AV_CDR_INTERNAL_ERROR

Log ID Added

Event logs:

LogID

Message

Change

43692

LOG_ID_EVENT_WIRELESS_WTPR_ANTENNA_DEFECT_DETECT

Log ID Added

49002

LOG_ID_VNP_DPDK_PRIMARY_RESTART

Log ID Added

49004

LOGID_EVENT_HYPERV_SRIOV_SHOW_UP

Log ID Added

49005

LOGID_EVENT_HYPERV_SRIOV_DISAPPEAR

Log ID Added

Email logs:

LogID

Message

Change

20480

LOGID_ANTISPAM_EMAIL_SMTP_NOTIF

Log ID Removed

20481

LOGID_ANTISPAM_EMAIL_SMTP_BWORD_NOTIF

Log ID Removed

20482

LOGID_ANTISPAM_EMAIL_POP3_NOTIF

Log ID Removed

20483

LOGID_ANTISPAM_EMAIL_POP3_BWORD_NOTIF

Log ID Removed

20484

LOGID_ANTISPAM_EMAIL_IMAP_NOTIF

Log ID Removed

20491

LOGID_ANTISPAM_EMAIL_IMAP_BWORD_NOTIF

Log ID Removed

20500

LOGID_ANTISPAM_EMAIL_MSN_NOTIF

Log ID Removed

20501

LOGID_ANTISPAM_EMAIL_YAHOO_NOTIF

Log ID Removed

20502

LOGID_ANTISPAM_EMAIL_GOOGLE_NOTIF

Log ID Removed

20503

LOGID_EMAIL_SMTP_GENERAL_NOTIF

Log ID Removed

20504

LOGID_EMAIL_POP3_GENERAL_NOTIF

Log ID Removed

20505

LOGID_EMAIL_IMAP_GENERAL_NOTIF

Log ID Removed

20506

LOGID_EMAIL_MAPI_GENERAL_NOTIF

Log ID Removed

20507

LOGID_ANTISPAM_EMAIL_MAPI_BWORD_NOTIF

Log ID Removed

20508

LOGID_ANTISPAM_EMAIL_MAPI_NOTIF

Log ID Removed

20480

LOGID_ANTISPAM_EMAIL_NOTIF

Log ID Added

20481

LOGID_EMAIL_GENERAL_NOTIF

Log ID Added

20482

LOGID_ANTISPAM_EMAIL_BWORD_NOTIF

Log ID Added

20510

LOGID_ANTISPAM_EMAIL_WEBMAIL_NOTIF

Log ID Added

FortiOS 6.4.1

Log field values

The following log field values are changed.

App logs:

Field

Change

parameters

Field Added

Event logs:

Field

Change

snr

Field Added

Traffic logs:

Field

Change

dstauthserver

Field Added

dstgroup

Field Added

dstuser

Field Added

signal

Field Added

snr

Field Added

Log ID changes

The following log IDs are changed.

Event logs:

LogID

Message

Change

20114

LOG_ID_IPSA_SELFTEST_FAIL

Log ID Added

46516

LOG_ID_INTERNAL_LTE_MODEM_BEARER_TECH_CHANGE

Log ID Added

53300

LOG_ID_VNE_PRO_UPDATE_COMPLETED

Log ID Added

53301

LOG_ID_VNE_PRO_UPDATE_FAILED

Log ID Added

SSL logs:

LogID

Message

Change

62005

LOG_ID_SSL_EXEMPT_CATEGORY

Log ID Removed

62007

LOG_ID_SSL_EXEMPT_FTGD_CATEGORY

Log ID Added

62008

LOG_ID_SSL_EXEMPT_LOCAL_CATEGORY

Log ID Added

62009

LOG_ID_SSL_EXEMPT_USER_CATEGORY

Log ID Added

FortiOS 6.4.0

Log type and subtype changes

  • Internet Content Adaptation Protocol (ICAP) is added as a new log type with a log category ID of 20.
  • SD-WAN is added as a new Event log subtype.

Log field values

The following log field values are changed.

Event logs:

Field

Change

auditreporttype

Field Added

bibandwidth

Field Added

checksum

Field Removed

created

Field Added

eventtype

Field Added

hbdn_reason

Field Removed

healthcheck

Field Added

inbandwidth

Field Added

infected

Field Removed

jitter

Field Added

latency

Field Added

member

Field Added

msgproto

Field Removed

neighbor

Field Added

newvalue

Field Added

nf_type

Field Removed

numpassmember

Field Added

oldvalue

Field Added

outbandwidth

Field Added

packetloss

Field Added

profile_vd

Field Removed

profilegroup

Field Removed

profiletype

Field Removed

scanned

Field Removed

serviceid

Field Added

sess_duration

Field Removed

slamap

Field Added

slatargetid

Field Added

stitchaction

Field Added

suspicious

Field Removed

to

Field Removed

virus

Field Removed

waninfo

Field Added

ICAP logs:

Field

Change

action

Field Added

date

Field Added

devid

Field Added

dstintf

Field Added

dstintfrole

Field Added

dstip

Field Added

dstport

Field Added

eventtime

Field Added

eventtype

Field Added

level

Field Added

logid

Field Added

msg

Field Added

policyid

Field Added

profile

Field Added

proto

Field Added

service

Field Added

sessionid

Field Added

srcintf

Field Added

srcintfrole

Field Added

srcip

Field Added

srcport

Field Added

subtype

Field Added

time

Field Added

type

Field Added

tz

Field Added

url

Field Added

vd

Field Added

SSL logs:

Field

Change

certdesc

Field Added

eventsubtype

Field Added

reason

Field Removed

vrf

Field Added

Traffic logs:

Field

Change

counticap

Field Added

dstcity

Field Added

dstregion

Field Added

srccity

Field Added

srcregion

Field Added

Web logs:

Field

Change

antiphishdc

Field Added

antiphishrule

Field Added

Log ID changes

The following log IDs are changed.

AV logs:

Log ID

Message

Change

8457

MESGID_MMS_CHECKSUM

Log ID Removed

8458

MESGID_MMS_CHECKSUM_NOTIF

Log ID Removed

CIFS logs:

Log ID

Message

Change

63002

LOG_ID_CIFS_CONN_FAIL

Log ID Added

63003

LOG_ID_CIFS_AUTH_FAIL

Log ID Added

63004

LOG_ID_CIFS_AUTH_INTERNAL_ERROR

Log ID Added

63005

LOG_ID_CIFS_AUTH_KRB_ERROR

Log ID Added

Email logs:

LogID

Message

Change

20485

LOGID_ANTISPAM_ENDPOINT_FILTER_WARNING

Log ID Removed

20486

LOGID_ANTISPAM_ENDPOINT_FILTER_NOTIF

Log ID Removed

20487

LOGID_ANTISPAM_ENDPOINT_MM7_WARNING

Log ID Removed

20488

LOGID_ANTISPAM_ENDPOINT_MM7_NOTIF

Log ID Removed

20489

LOGID_ANTISPAM_ENDPOINT_MM1_WARNING

Log ID Removed

20490

LOGID_ANTISPAM_ENDPOINT_MM1_NOTIF

Log ID Removed

20492

LOGID_ANTISPAM_MM1_FLOOD_WARNING

Log ID Removed

20493

LOGID_ANTISPAM_MM1_FLOOD_NOTIF

Log ID Removed

20494

LOGID_ANTISPAM_MM4_FLOOD_WARNING

Log ID Removed

20495

LOGID_ANTISPAM_MM4_FLOOD_NOTIF

Log ID Removed

20496

LOGID_ANTISPAM_MM1_DUPE_WARNING

Log ID Removed

20497

LOGID_ANTISPAM_MM1_DUPE_NOTIF

Log ID Removed

20498

LOGID_ANTISPAM_MM4_DUPE_WARNING

Log ID Removed

20499

LOGID_ANTISPAM_MM4_DUPE_NOTIF

Log ID Removed

Event logs:

LogID

Message

Change

20079

LOG_ID_RAD_READY

Log ID Removed

22033

LOG_ID_FAIL_CSF_LOG_SYNC_NO_VALID_FSA

Log ID Removed

22050

LOG_ID_IPAMD_ADDRESS_ALLOCATED

Log ID Added

22051

LOG_ID_IPAMD_ADDRESS_SET_FAILED

Log ID Added

22052

LOG_ID_IPAMD_ADDRESS_INVALIDATED

Log ID Added

22053

LOG_ID_IPAMD_VALIDATION_COMPLETE

Log ID Added

22220

LOG_ID_EXT_RESOURCE

Log ID Added

22221

LOG_ID_EXT_RESOURCE_FAIL

Log ID Added

22222

LOG_ID_EXT_RESOURCE_LOAD

Log ID Added

22223

LOG_ID_EXT_RESOURCE_DEBUG

Log ID Added

22897

LOG_ID_FLCFGD_NAC_ADD

Log ID Added

22898

LOG_ID_FLCFGD_NAC_DELETE

Log ID Added

22899

LOG_ID_FLCFGD_NAC_MODIFY

Log ID Added

22919

LOG_ID_SVR_LOG_STATUS_CHANGED

Log ID Added

37910

MESGID_HB_PACKET_LOST

Log ID Added

38400

LOGID_EVENT_NOTIF_SEND_SUCC

Log ID Removed

38401

LOGID_EVENT_NOTIF_SEND_FAIL

Log ID Removed

38402

LOGID_EVENT_NOTIF_DNS_FAIL

Log ID Removed

43264

LOGID_MMS_STATS

Log ID Removed

43688

LOG_ID_EVENT_WIRELESS_APCFG_RECEIVE

Log ID Added

43689

LOG_ID_EVENT_WIRELESS_APCFG_VALIDATING

Log ID Added

43690

LOG_ID_EVENT_WIRELESS_APCFG_APPLY

Log ID Added

43691

LOG_ID_EVENT_WIRELESS_APCFG_REJECT

Log ID Added

45109

LOG_ID_EC_FTCL_LOGOFF

Log ID Removed

45119

LOG_ID_EC_FTCL_DISCONN

Log ID Removed

45120

LOG_ID_EC_INVALID_EMS_TAG_REFERENCED

Log ID Added

48300

LOG_ID_WRG_SVR_FGT_CONF

Log ID Removed

ICAP logs:

Log ID

Message

Change

60000

LOG_ID_ICAP_SERVER_ERROR

Log ID Added

SSL logs:

Log ID

Message

Change

62000

LOG_ID_SSL_CERT_BLACKLISTED

Log ID Removed

62001

LOG_ID_SSL_CERT_PASS

Log ID Removed

62002

LOG_ID_SSL_CERT_BLOCK

Log ID Removed

62003

LOG_ID_SSL_EXEMPT

Log ID Removed

62004

LOG_ID_SSL_EXEMPT_ADDR

Log ID Added

62005

LOG_ID_SSL_EXEMPT_CATEGORY

Log ID Added

62006

LOG_ID_SSL_EXEMPT_WHITELIST

Log ID Added

62050

LOG_ID_SSL_HS_CERT_REQ_EXEMPT

Log ID Removed

62051

LOG_ID_SSL_HS_CERT_REQ_BLOCK

Log ID Removed

62052

LOG_ID_SSL_HS_UNSUPPROTED_EXEMPT

Log ID Removed

62053

LOG_ID_SSL_HS_UNSUPPORTED_BLOCK

Log ID Removed

62100

LOG_ID_SSL_NEGOTIATION_INSPECT

Log ID Added

62101

LOG_ID_SSL_NEGOTIATION_BLOCK

Log ID Added

62102

LOG_ID_SSL_NEGOTIATION_BYPASS

Log ID Added

62200

LOG_ID_SSL_EXEMPT_ADDR

Log ID Removed

62202

LOG_ID_SSL_EXEMPT_FTGD_CAT

Log ID Removed

62300

LOG_ID_SSL_ANOMALY_CERT_BLACKLISTED

Log ID Added

62301

LOG_ID_SSL_ANOMALY_CERT_RESIGN_TRUSTED

Log ID Added

62302

LOG_ID_SSL_ANOMALY_CERT_RESIGN_UNTRUSTED

Log ID Added

62303

LOG_ID_SSL_ANOMALY_CERT_BLOCKED

Log ID Added

62304

LOG_ID_SSL_ANOMALY_CERT_SNI_MISMATCHED

Log ID Added

Web logs:

Log ID

Message

Change

12289

LOG_ID_WEB_CONTENT_MMS_BANWORD

Log ID Removed

12291

LOG_ID_WEB_CONTENT_MMS_EXEMPTWORD

Log ID Removed

12305

LOG_ID_WEB_CONTENT_MMS_BANWORD_NOTIF

Log ID Removed

13648

LOG_ID_WEB_WF_ANTIPHISH_MATCH_URL_ALLOW

Log ID Added

13649

LOG_ID_WEB_WF_ANTIPHISH_MATCH_FTGD_ALLOW

Log ID Added

13650

LOG_ID_WEB_WF_ANTIPHISH_MATCH_DEFAULT_ALLOW

Log ID Added

13651

LOG_ID_WEB_WF_ANTIPHISH_MATCH_URL_BLOCK

Log ID Added

13652

LOG_ID_WEB_WF_ANTIPHISH_MATCH_FTGD_BLOCK

Log ID Added

13653

LOG_ID_WEB_WF_ANTIPHISH_MATCH_DEFAULT_BLOCK

Log ID Added

What's new

What's new

This section identifies major changes in the Log Reference from version 6.4.0 and later. For more information about new features, please see the FortiOS 6.4 New Features Guide.

FortiOS 6.4.14

There are no major log changes between FortiOS 6.4.13 and 6.4.14.

FortiOS 6.4.13

Log ID changes

The following log IDs are changed.

Event logs:

LogID

Message

Change

20230

LOG_ID_SYS_SECURITY_WRITE_VIOLATION

Log ID Added

20231

LOG_ID_SYS_SECURITY_HARDLINK_VIOLATION

Log ID Added

20232

LOG_ID_SYS_SECURITY_LOAD_MODULE_VIOLATION

Log ID Added

20233

LOG_ID_SYS_SECURITY_FILE_HASH_MISSING

Log ID Added

20234

LOG_ID_SYS_SECURITY_FILE_HASH_MISMATCH

Log ID Added

41009

LOG_ID_UPD_DB_SIGN_INVALID

Log ID Added

FortiOS 6.4.12

There are no major log changes between FortiOS 6.4.11 and 6.4.12.

FortiOS 6.4.11

There are no major log changes between FortiOS 6.4.10 and 6.4.11.

FortiOS 6.4.10

Log ID changes

The following log IDs are changed.

Event logs:

LogID

Message

Change

20027

LOG_ID_REPORT_DEL_OLD_REC

Log ID Removed

32262

LOG_ID_RESTORE_IMG_CONFIRM

Log ID Added

37911

MESGID_FGSP_MEMBER_JOIN

Log ID Added

37912

MESGID_FGSP_MEMBER_LEAVE

Log ID Added

FortiOS 6.4.9

Log field values

The following log field values changed.

Traffic logs:

Field

Change

dstreputation

Field Added

srcreputation

Field Added

Log ID changes

The following log IDs are changed.

Event logs:

LogID

Message

Change

22114

LOG_ID_POWER_REDUNDANCY_DEGRADE

Log ID Added

22115

LOG_ID_POWER_REDUNDANCY_FAILURE

Log ID Added

22807

LOG_ID_VDOM_LIC

Log ID Added

32262

LOG_ID_RESTORE_IMG_CONFIRM

Log ID Added

34428

LOG_ID_NP7_HPE_PACKET_DROP

Log ID Added

34430

LOG_ID_NP7_HPE_PACKET_FLOOD

Log ID Added

38420

LOGID_EVENT_HTTPS_CONNECTION

Log ID Added

53311

LOG_ID_NPU_PER_MAPPING_ALLOCATION

Log ID Added

FortiOS 6.4.8

There are no major log changes between FortiOS 6.4.7 and 6.4.8.

FortiOS 6.4.7

Log ID changes

The following log IDs are changed.

Event logs:

LogID

Message

Change

53312

LOG_ID_NPD_INFO

Log ID Added

53313

LOG_ID_NPD_WARNING

Log ID Added

53314

LOG_ID_NPD_ERROR

Log ID Added

FortiOS 6.4.6

Log ID changes

The following log IDs are changed.

Event logs:

LogID

Message

Change

34418

LOG_ID_NP6_HPE_PACKET_DROP

Log ID Added

34419

LOG_ID_NP6_HPE_PACKET_FLOOD

Log ID Added

43707

LOG_ID_EVENT_WIRELESS_WTPR_SSID_UP

Log ID Added

43708

LOG_ID_EVENT_WIRELESS_WTPR_SSID_DOWN

Log ID Added

FortiOS 6.4.5

Log ID changes

The following log IDs are changed.

Event logs:

LogID

Message

Change

45120

LOG_ID_EC_INVALID_EMS_TAG_REFERENCED

Log ID Removed

53203

LOG_ID_CONNECTOR_OBJECT_UPDATE

Log ID Added

53204

LOG_ID_CONNECTOR_OBJECT_CANT_ADD

Log ID Added

53205

LOG_ID_CONNECTOR_OBJECT_CANT_REMOVE

Log ID Added

FortiOS 6.4.4

There are no major log changes between FortiOS 6.4.3 and 6.4.4.

FortiOS 6.4.3

Log field values

The following log field values are changed.

AV logs:

Field

Change

attachment

Field Added

cc

Field Added

subject

Field Added

DLP logs:

Field

Change

attachment

Field Added

cc

Field Added

Event logs:

Field

Change

operdrmamode

Field Added

slctdrmamode

Field Added

useralt

Field Added

FILE-FILTER logs:

Field

Change

attachment

Field Added

cc

Field Added

Traffic logs:

Field

Change

vwlname

Field Added

Log ID changes

The following log IDs are changed.

Event logs:

LogID

Message

Change

22954

LOG_ID_INET_SVC_OBSOLETE

Log ID Added

32096

LOG_ID_GUI_DOWNLOAD_LOG

Log ID Added

40706

LOG_ID_EVENT_SYS_BROKEN_SYMBOLIC_LINK

Log ID Added

43693

LOG_ID_EVENT_WIRELESS_STA_WNM_ACTION_BSTM_REQ

Log ID Added

43694

LOG_ID_EVENT_WIRELESS_STA_WNM_ACTION_BSTM_RESP_ACCEPT

Log ID Added

43695

LOG_ID_EVENT_WIRELESS_STA_WNM_ACTION_BSTM_RESP_REJECT

Log ID Added

43696

LOG_ID_EVENT_WIRELESS_WTPR_DRMA_START

Log ID Added

43697

LOG_ID_EVENT_WIRELESS_WTPR_DRMA_STOP

Log ID Added

43698

LOG_ID_EVENT_WIRELESS_WTPR_DRMA_MODE

Log ID Added

43699

LOG_ID_EVENT_WIRELESS_STA_DHCP6_SOLICIT

Log ID Added

43700

LOG_ID_EVENT_WIRELESS_STA_DHCP6_ADVERTISE

Log ID Added

43701

LOG_ID_EVENT_WIRELESS_STA_DHCP6_REQUEST

Log ID Added

43702

LOG_ID_EVENT_WIRELESS_STA_DHCP6_CONFIRM

Log ID Added

43703

LOG_ID_EVENT_WIRELESS_STA_DHCP6_RENEW

Log ID Added

43704

LOG_ID_EVENT_WIRELESS_STA_DHCP6_REPLY

Log ID Added

43705

LOG_ID_EVENT_WIRELESS_STA_DHCP6_RELEASE

Log ID Added

43706

LOG_ID_EVENT_WIRELESS_STA_DHCP6_RECONFIGURE

Log ID Added

53202

LOG_ID_CONNECTOR_API_FAILED

Log ID Added

FortiOS 6.4.2

Log field values

The following log field values are changed.

Event logs:

Field

Change

bibandwidthused

Field Added

inbandwidthused

Field Added

outbandwidthused

Field Added

Email logs:

Field

Change

webmailprovider

Field Added

GTP logs:

Field

Change

cggsn6

Field Added

cgsn6

Field Added

cpaddr6

Field Added

cpdladdr6

Field Added

cpdlisraddr6

Field Added

cpuladdr6

Field Added

csgsn6

Field Added

from6

Field Added

to6

Field Added

uggsn6

Field Added

ugsn6

Field Added

usgsn6

Field Added

DNS logs:

Field

Change

rcode

Field Added

Traffic logs:

Field

Change

dstgroup

Field Removed

tunnelid

Field Added

Log ID changes

The following log IDs are changed.

AV logs:

LogID

Message

Change

8981

MESGID_SCAN_AV_CDR_INTERNAL_ERROR

Log ID Added

Event logs:

LogID

Message

Change

43692

LOG_ID_EVENT_WIRELESS_WTPR_ANTENNA_DEFECT_DETECT

Log ID Added

49002

LOG_ID_VNP_DPDK_PRIMARY_RESTART

Log ID Added

49004

LOGID_EVENT_HYPERV_SRIOV_SHOW_UP

Log ID Added

49005

LOGID_EVENT_HYPERV_SRIOV_DISAPPEAR

Log ID Added

Email logs:

LogID

Message

Change

20480

LOGID_ANTISPAM_EMAIL_SMTP_NOTIF

Log ID Removed

20481

LOGID_ANTISPAM_EMAIL_SMTP_BWORD_NOTIF

Log ID Removed

20482

LOGID_ANTISPAM_EMAIL_POP3_NOTIF

Log ID Removed

20483

LOGID_ANTISPAM_EMAIL_POP3_BWORD_NOTIF

Log ID Removed

20484

LOGID_ANTISPAM_EMAIL_IMAP_NOTIF

Log ID Removed

20491

LOGID_ANTISPAM_EMAIL_IMAP_BWORD_NOTIF

Log ID Removed

20500

LOGID_ANTISPAM_EMAIL_MSN_NOTIF

Log ID Removed

20501

LOGID_ANTISPAM_EMAIL_YAHOO_NOTIF

Log ID Removed

20502

LOGID_ANTISPAM_EMAIL_GOOGLE_NOTIF

Log ID Removed

20503

LOGID_EMAIL_SMTP_GENERAL_NOTIF

Log ID Removed

20504

LOGID_EMAIL_POP3_GENERAL_NOTIF

Log ID Removed

20505

LOGID_EMAIL_IMAP_GENERAL_NOTIF

Log ID Removed

20506

LOGID_EMAIL_MAPI_GENERAL_NOTIF

Log ID Removed

20507

LOGID_ANTISPAM_EMAIL_MAPI_BWORD_NOTIF

Log ID Removed

20508

LOGID_ANTISPAM_EMAIL_MAPI_NOTIF

Log ID Removed

20480

LOGID_ANTISPAM_EMAIL_NOTIF

Log ID Added

20481

LOGID_EMAIL_GENERAL_NOTIF

Log ID Added

20482

LOGID_ANTISPAM_EMAIL_BWORD_NOTIF

Log ID Added

20510

LOGID_ANTISPAM_EMAIL_WEBMAIL_NOTIF

Log ID Added

FortiOS 6.4.1

Log field values

The following log field values are changed.

App logs:

Field

Change

parameters

Field Added

Event logs:

Field

Change

snr

Field Added

Traffic logs:

Field

Change

dstauthserver

Field Added

dstgroup

Field Added

dstuser

Field Added

signal

Field Added

snr

Field Added

Log ID changes

The following log IDs are changed.

Event logs:

LogID

Message

Change

20114

LOG_ID_IPSA_SELFTEST_FAIL

Log ID Added

46516

LOG_ID_INTERNAL_LTE_MODEM_BEARER_TECH_CHANGE

Log ID Added

53300

LOG_ID_VNE_PRO_UPDATE_COMPLETED

Log ID Added

53301

LOG_ID_VNE_PRO_UPDATE_FAILED

Log ID Added

SSL logs:

LogID

Message

Change

62005

LOG_ID_SSL_EXEMPT_CATEGORY

Log ID Removed

62007

LOG_ID_SSL_EXEMPT_FTGD_CATEGORY

Log ID Added

62008

LOG_ID_SSL_EXEMPT_LOCAL_CATEGORY

Log ID Added

62009

LOG_ID_SSL_EXEMPT_USER_CATEGORY

Log ID Added

FortiOS 6.4.0

Log type and subtype changes

  • Internet Content Adaptation Protocol (ICAP) is added as a new log type with a log category ID of 20.
  • SD-WAN is added as a new Event log subtype.

Log field values

The following log field values are changed.

Event logs:

Field

Change

auditreporttype

Field Added

bibandwidth

Field Added

checksum

Field Removed

created

Field Added

eventtype

Field Added

hbdn_reason

Field Removed

healthcheck

Field Added

inbandwidth

Field Added

infected

Field Removed

jitter

Field Added

latency

Field Added

member

Field Added

msgproto

Field Removed

neighbor

Field Added

newvalue

Field Added

nf_type

Field Removed

numpassmember

Field Added

oldvalue

Field Added

outbandwidth

Field Added

packetloss

Field Added

profile_vd

Field Removed

profilegroup

Field Removed

profiletype

Field Removed

scanned

Field Removed

serviceid

Field Added

sess_duration

Field Removed

slamap

Field Added

slatargetid

Field Added

stitchaction

Field Added

suspicious

Field Removed

to

Field Removed

virus

Field Removed

waninfo

Field Added

ICAP logs:

Field

Change

action

Field Added

date

Field Added

devid

Field Added

dstintf

Field Added

dstintfrole

Field Added

dstip

Field Added

dstport

Field Added

eventtime

Field Added

eventtype

Field Added

level

Field Added

logid

Field Added

msg

Field Added

policyid

Field Added

profile

Field Added

proto

Field Added

service

Field Added

sessionid

Field Added

srcintf

Field Added

srcintfrole

Field Added

srcip

Field Added

srcport

Field Added

subtype

Field Added

time

Field Added

type

Field Added

tz

Field Added

url

Field Added

vd

Field Added

SSL logs:

Field

Change

certdesc

Field Added

eventsubtype

Field Added

reason

Field Removed

vrf

Field Added

Traffic logs:

Field

Change

counticap

Field Added

dstcity

Field Added

dstregion

Field Added

srccity

Field Added

srcregion

Field Added

Web logs:

Field

Change

antiphishdc

Field Added

antiphishrule

Field Added

Log ID changes

The following log IDs are changed.

AV logs:

Log ID

Message

Change

8457

MESGID_MMS_CHECKSUM

Log ID Removed

8458

MESGID_MMS_CHECKSUM_NOTIF

Log ID Removed

CIFS logs:

Log ID

Message

Change

63002

LOG_ID_CIFS_CONN_FAIL

Log ID Added

63003

LOG_ID_CIFS_AUTH_FAIL

Log ID Added

63004

LOG_ID_CIFS_AUTH_INTERNAL_ERROR

Log ID Added

63005

LOG_ID_CIFS_AUTH_KRB_ERROR

Log ID Added

Email logs:

LogID

Message

Change

20485

LOGID_ANTISPAM_ENDPOINT_FILTER_WARNING

Log ID Removed

20486

LOGID_ANTISPAM_ENDPOINT_FILTER_NOTIF

Log ID Removed

20487

LOGID_ANTISPAM_ENDPOINT_MM7_WARNING

Log ID Removed

20488

LOGID_ANTISPAM_ENDPOINT_MM7_NOTIF

Log ID Removed

20489

LOGID_ANTISPAM_ENDPOINT_MM1_WARNING

Log ID Removed

20490

LOGID_ANTISPAM_ENDPOINT_MM1_NOTIF

Log ID Removed

20492

LOGID_ANTISPAM_MM1_FLOOD_WARNING

Log ID Removed

20493

LOGID_ANTISPAM_MM1_FLOOD_NOTIF

Log ID Removed

20494

LOGID_ANTISPAM_MM4_FLOOD_WARNING

Log ID Removed

20495

LOGID_ANTISPAM_MM4_FLOOD_NOTIF

Log ID Removed

20496

LOGID_ANTISPAM_MM1_DUPE_WARNING

Log ID Removed

20497

LOGID_ANTISPAM_MM1_DUPE_NOTIF

Log ID Removed

20498

LOGID_ANTISPAM_MM4_DUPE_WARNING

Log ID Removed

20499

LOGID_ANTISPAM_MM4_DUPE_NOTIF

Log ID Removed

Event logs:

LogID

Message

Change

20079

LOG_ID_RAD_READY

Log ID Removed

22033

LOG_ID_FAIL_CSF_LOG_SYNC_NO_VALID_FSA

Log ID Removed

22050

LOG_ID_IPAMD_ADDRESS_ALLOCATED

Log ID Added

22051

LOG_ID_IPAMD_ADDRESS_SET_FAILED

Log ID Added

22052

LOG_ID_IPAMD_ADDRESS_INVALIDATED

Log ID Added

22053

LOG_ID_IPAMD_VALIDATION_COMPLETE

Log ID Added

22220

LOG_ID_EXT_RESOURCE

Log ID Added

22221

LOG_ID_EXT_RESOURCE_FAIL

Log ID Added

22222

LOG_ID_EXT_RESOURCE_LOAD

Log ID Added

22223

LOG_ID_EXT_RESOURCE_DEBUG

Log ID Added

22897

LOG_ID_FLCFGD_NAC_ADD

Log ID Added

22898

LOG_ID_FLCFGD_NAC_DELETE

Log ID Added

22899

LOG_ID_FLCFGD_NAC_MODIFY

Log ID Added

22919

LOG_ID_SVR_LOG_STATUS_CHANGED

Log ID Added

37910

MESGID_HB_PACKET_LOST

Log ID Added

38400

LOGID_EVENT_NOTIF_SEND_SUCC

Log ID Removed

38401

LOGID_EVENT_NOTIF_SEND_FAIL

Log ID Removed

38402

LOGID_EVENT_NOTIF_DNS_FAIL

Log ID Removed

43264

LOGID_MMS_STATS

Log ID Removed

43688

LOG_ID_EVENT_WIRELESS_APCFG_RECEIVE

Log ID Added

43689

LOG_ID_EVENT_WIRELESS_APCFG_VALIDATING

Log ID Added

43690

LOG_ID_EVENT_WIRELESS_APCFG_APPLY

Log ID Added

43691

LOG_ID_EVENT_WIRELESS_APCFG_REJECT

Log ID Added

45109

LOG_ID_EC_FTCL_LOGOFF

Log ID Removed

45119

LOG_ID_EC_FTCL_DISCONN

Log ID Removed

45120

LOG_ID_EC_INVALID_EMS_TAG_REFERENCED

Log ID Added

48300

LOG_ID_WRG_SVR_FGT_CONF

Log ID Removed

ICAP logs:

Log ID

Message

Change

60000

LOG_ID_ICAP_SERVER_ERROR

Log ID Added

SSL logs:

Log ID

Message

Change

62000

LOG_ID_SSL_CERT_BLACKLISTED

Log ID Removed

62001

LOG_ID_SSL_CERT_PASS

Log ID Removed

62002

LOG_ID_SSL_CERT_BLOCK

Log ID Removed

62003

LOG_ID_SSL_EXEMPT

Log ID Removed

62004

LOG_ID_SSL_EXEMPT_ADDR

Log ID Added

62005

LOG_ID_SSL_EXEMPT_CATEGORY

Log ID Added

62006

LOG_ID_SSL_EXEMPT_WHITELIST

Log ID Added

62050

LOG_ID_SSL_HS_CERT_REQ_EXEMPT

Log ID Removed

62051

LOG_ID_SSL_HS_CERT_REQ_BLOCK

Log ID Removed

62052

LOG_ID_SSL_HS_UNSUPPROTED_EXEMPT

Log ID Removed

62053

LOG_ID_SSL_HS_UNSUPPORTED_BLOCK

Log ID Removed

62100

LOG_ID_SSL_NEGOTIATION_INSPECT

Log ID Added

62101

LOG_ID_SSL_NEGOTIATION_BLOCK

Log ID Added

62102

LOG_ID_SSL_NEGOTIATION_BYPASS

Log ID Added

62200

LOG_ID_SSL_EXEMPT_ADDR

Log ID Removed

62202

LOG_ID_SSL_EXEMPT_FTGD_CAT

Log ID Removed

62300

LOG_ID_SSL_ANOMALY_CERT_BLACKLISTED

Log ID Added

62301

LOG_ID_SSL_ANOMALY_CERT_RESIGN_TRUSTED

Log ID Added

62302

LOG_ID_SSL_ANOMALY_CERT_RESIGN_UNTRUSTED

Log ID Added

62303

LOG_ID_SSL_ANOMALY_CERT_BLOCKED

Log ID Added

62304

LOG_ID_SSL_ANOMALY_CERT_SNI_MISMATCHED

Log ID Added

Web logs:

Log ID

Message

Change

12289

LOG_ID_WEB_CONTENT_MMS_BANWORD

Log ID Removed

12291

LOG_ID_WEB_CONTENT_MMS_EXEMPTWORD

Log ID Removed

12305

LOG_ID_WEB_CONTENT_MMS_BANWORD_NOTIF

Log ID Removed

13648

LOG_ID_WEB_WF_ANTIPHISH_MATCH_URL_ALLOW

Log ID Added

13649

LOG_ID_WEB_WF_ANTIPHISH_MATCH_FTGD_ALLOW

Log ID Added

13650

LOG_ID_WEB_WF_ANTIPHISH_MATCH_DEFAULT_ALLOW

Log ID Added

13651

LOG_ID_WEB_WF_ANTIPHISH_MATCH_URL_BLOCK

Log ID Added

13652

LOG_ID_WEB_WF_ANTIPHISH_MATCH_FTGD_BLOCK

Log ID Added

13653

LOG_ID_WEB_WF_ANTIPHISH_MATCH_DEFAULT_BLOCK

Log ID Added