Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions

    • CLI Reference

    6.4.4
    7.6.0
    7.4.5
    7.4.4
    7.4.3
    7.4.2
    7.4.1
    7.4.0
    7.2.10
    7.2.9
    7.2.8
    7.2.7
    7.2.6
    7.2.5
    7.2.4
    7.2.3
    7.2.2
    7.2.1
    7.2.0
    7.0.16
    7.0.15
    7.0.14
    7.0.13
    7.0.12
    7.0.11
    7.0.10
    7.0.9
    7.0.8
    7.0.7
    7.0.6
    7.0.5
    7.0.4
    7.0.3
    7.0.2
    7.0.1
    7.0.0
    6.4.15
    6.4.14
    6.4.13
    6.4.12
    6.4.11
    6.4.10
    6.4.9
    6.4.8
    6.4.7
    6.4.6
    6.4.5
    6.4.4
    6.4.3
    6.4.2
    6.4.1
    6.4.0
    6.2.16
    6.2.15
    6.2.14
    6.2.13
    6.2.12
    6.2.11
    6.2.10
    6.2.9
    6.2.8
    6.2.7
    6.2.6
    6.2.5
    6.2.4
    6.2.3
    6.2.2
    6.2.1
    6.0.0
    5.6.0
    5.4.0
    5.2.0
    5.0.0

    config log threat-weight

    config log threat-weight

    Configure threat weight settings.

    config log threat-weight

    Description: Configure threat weight settings.

    set status [enable|disable]

    config level

    Description: Score mapping for threat weight levels.

    set low {integer}

    set medium {integer}

    set high {integer}

    set critical {integer}

    end

    set blocked-connection [disable|low|...]

    set failed-connection [disable|low|...]

    set url-block-detected [disable|low|...]

    set botnet-connection-detected [disable|low|...]

    config malware

    Description: Anti-virus malware threat weight settings.

    set virus-infected [disable|low|...]

    set file-blocked [disable|low|...]

    set command-blocked [disable|low|...]

    set oversized [disable|low|...]

    set virus-scan-error [disable|low|...]

    set switch-proto [disable|low|...]

    set mimefragmented [disable|low|...]

    set virus-file-type-executable [disable|low|...]

    set virus-outbreak-prevention [disable|low|...]

    set content-disarm [disable|low|...]

    set malware-list [disable|low|...]

    set fsa-malicious [disable|low|...]

    set fsa-high-risk [disable|low|...]

    set fsa-medium-risk [disable|low|...]

    end

    config ips

    Description: IPS threat weight settings.

    set info-severity [disable|low|...]

    set low-severity [disable|low|...]

    set medium-severity [disable|low|...]

    set high-severity [disable|low|...]

    set critical-severity [disable|low|...]

    end

    config web

    Description: Web filtering threat weight settings.

    edit <id>

    set category {integer}

    set level [disable|low|...]

    next

    end

    config geolocation

    Description: Geolocation-based threat weight settings.

    edit <id>

    set country {string}

    set level [disable|low|...]

    next

    end

    config application

    Description: Application-control threat weight settings.

    edit <id>

    set category {integer}

    set level [disable|low|...]

    next

    end

    end

    config log threat-weight

    Parameter name

    Description

    Type

    Size

    status

    Enable/disable the threat weight feature.

    option

    -

    Option

    Description

    enable

    Enable the threat weight feature.

    disable

    Disable the threat weight feature.

    blocked-connection

    Threat weight score for blocked connections.

    option

    -

    Option

    Description

    disable

    Disable threat weight scoring for blocked connections.

    low

    Use the low level score for blocked connections.

    medium

    Use the medium level score for blocked connections.

    high

    Use the high level score for blocked connections.

    critical

    Use the critical level score for blocked connections.

    failed-connection

    Threat weight score for failed connections.

    option

    -

    Option

    Description

    disable

    Disable threat weight scoring for failed connections.

    low

    Use the low level score for failed connections.

    medium

    Use the medium level score for failed connections.

    high

    Use the high level score for failed connections.

    critical

    Use the critical level score for failed connections.

    url-block-detected

    Threat weight score for URL blocking.

    option

    -

    Option

    Description

    disable

    Disable threat weight scoring for URL blocking.

    low

    Use the low level score for URL blocking.

    medium

    Use the medium level score for URL blocking.

    high

    Use the high level score for URL blocking.

    critical

    Use the critical level score for URL blocking.

    botnet-connection-detected

    Threat weight score for detected botnet connections.

    option

    -

    Option

    Description

    disable

    Disable threat weight scoring for detected botnet connections.

    low

    Use the low level score for detected botnet connections.

    medium

    Use the medium level score for detected botnet connections.

    high

    Use the high level score for detected botnet connections.

    critical

    Use the critical level score for detected botnet connections.

    Parameter name

    Description

    Type

    Size

    low

    Low level score value (1 - 100).

    integer

    Minimum value: 1 Maximum value: 100

    medium

    Medium level score value (1 - 100).

    integer

    Minimum value: 1 Maximum value: 100

    high

    High level score value (1 - 100).

    integer

    Minimum value: 1 Maximum value: 100

    critical

    Critical level score value (1 - 100).

    integer

    Minimum value: 1 Maximum value: 100

    Parameter name

    Description

    Type

    Size

    virus-infected

    Threat weight score for virus (infected) detected.

    option

    -

    Option

    Description

    disable

    Disable threat weight scoring for virus (infected) detected.

    low

    Use the low level score for virus (infected) detected.

    medium

    Use the medium level score for virus (infected) detected.

    high

    Use the high level score for virus (infected) detected.

    critical

    Use the critical level score for virus (infected) detected.

    file-blocked

    Threat weight score for blocked file detected.

    option

    -

    Option

    Description

    disable

    Disable threat weight scoring for blocked file detected.

    low

    Use the low level score for blocked file detected.

    medium

    Use the medium level score for blocked file detected.

    high

    Use the high level score for blocked file detected.

    critical

    Use the critical level score for blocked file detected.

    command-blocked

    Threat weight score for blocked command detected.

    option

    -

    Option

    Description

    disable

    Disable threat weight scoring for blocked command detected.

    low

    Use the low level score for blocked command detected.

    medium

    Use the medium level score for blocked command detected.

    high

    Use the high level score for blocked command detected.

    critical

    Use the critical level score for blocked command detected.

    oversized

    Threat weight score for oversized file detected.

    option

    -

    Option

    Description

    disable

    Disable threat weight scoring for oversized file detected.

    low

    Use the low level score for oversized file detected.

    medium

    Use the medium level score for oversized file detected.

    high

    Use the high level score for oversized file detected.

    critical

    Use the critical level score for oversized file detected.

    virus-scan-error

    Threat weight score for virus (scan error) detected.

    option

    -

    Option

    Description

    disable

    Disable threat weight scoring for virus (scan error) detected.

    low

    Use the low level score for virus (scan error) detected.

    medium

    Use the medium level score for virus (scan error) detected.

    high

    Use the high level score for virus (scan error) detected.

    critical

    Use the critical level score for virus (scan error) detected.

    switch-proto

    Threat weight score for switch proto detected.

    option

    -

    Option

    Description

    disable

    Disable threat weight scoring for switch proto detected.

    low

    Use the low level score for switch proto detected.

    medium

    Use the medium level score for switch proto detected.

    high

    Use the high level score for switch proto detected.

    critical

    Use the critical level score for switch proto detected.

    mimefragmented

    Threat weight score for mimefragmented detected.

    option

    -

    Option

    Description

    disable

    Disable threat weight scoring for mimefragmented detected.

    low

    Use the low level score for mimefragmented detected.

    medium

    Use the medium level score for mimefragmented detected.

    high

    Use the high level score for mimefragmented detected.

    critical

    Use the critical level score for mimefragmented detected.

    virus-file-type-executable

    Threat weight score for virus (filetype executable) detected.

    option

    -

    Option

    Description

    disable

    Disable threat weight scoring for virus (filetype executable) detected.

    low

    Use the low level score for virus (filetype executable) detected.

    medium

    Use the medium level score for virus (filetype executable) detected.

    high

    Use the high level score for virus (filetype executable) detected.

    critical

    Use the critical level score for virus (filetype executable) detected.

    virus-outbreak-prevention

    Threat weight score for virus (outbreak prevention) event.

    option

    -

    Option

    Description

    disable

    Disable threat weight scoring for virus (outbreak prevention) event.

    low

    Use the low level score for virus (outbreak prevention) event.

    medium

    Use the medium level score for virus (outbreak prevention) event.

    high

    Use the high level score for virus (outbreak prevention) event.

    critical

    Use the critical level score for virus (outbreak prevention) event.

    content-disarm

    Threat weight score for virus (content disarm) detected.

    option

    -

    Option

    Description

    disable

    Disable threat weight scoring for virus (content disarm) detected.

    low

    Use the low level score for virus (content disarm) detected.

    medium

    Use the medium level score for virus (content disarm) detected.

    high

    Use the high level score for virus (content disarm) detected.

    critical

    Use the critical level score for virus (content disarm) detected.

    malware-list

    Threat weight score for virus (malware list) detected.

    option

    -

    Option

    Description

    disable

    Disable threat weight scoring for virus (malware list) detected.

    low

    Use the low level score for virus (malware list) detected.

    medium

    Use the medium level score for virus (malware list) detected.

    high

    Use the high level score for virus (malware list) detected.

    critical

    Use the critical level score for virus (malware list) detected.

    fsa-malicious

    Threat weight score for FortiSandbox malicious malware detected.

    option

    -

    Option

    Description

    disable

    Disable threat weight scoring for FortiSandbox malicious malware detected.

    low

    Use the low level score for FortiSandbox malicious malware detected.

    medium

    Use the medium level score for FortiSandbox malicious malware detected.

    high

    Use the high level score for FortiSandbox malicious malware detected.

    critical

    Use the critical level score for FortiSandbox malicious malware detected.

    fsa-high-risk

    Threat weight score for FortiSandbox high risk malware detected.

    option

    -

    Option

    Description

    disable

    Disable threat weight scoring for FortiSandbox high risk malware detected.

    low

    Use the low level score for FortiSandbox high risk malware detected.

    medium

    Use the medium level score for FortiSandbox high risk malware detected.

    high

    Use the high level score for FortiSandbox high risk malware detected.

    critical

    Use the critical level score for FortiSandbox high risk malware detected.

    fsa-medium-risk

    Threat weight score for FortiSandbox medium risk malware detected.

    option

    -

    Option

    Description

    disable

    Disable threat weight scoring for FortiSandbox medium risk malware detected.

    low

    Use the low level score for FortiSandbox medium risk malware detected.

    medium

    Use the medium level score for FortiSandbox medium risk malware detected.

    high

    Use the high level score for FortiSandbox medium risk malware detected.

    critical

    Use the critical level score for FortiSandbox medium risk malware detected.

    Parameter name

    Description

    Type

    Size

    info-severity

    Threat weight score for IPS info severity events.

    option

    -

    Option

    Description

    disable

    Disable threat weight scoring for IPS info severity events.

    low

    Use the low level score for IPS info severity events.

    medium

    Use the medium level score for IPS info severity events.

    high

    Use the high level score for IPS info severity events.

    critical

    Use the critical level score for IPS info severity events.

    low-severity

    Threat weight score for IPS low severity events.

    option

    -

    Option

    Description

    disable

    Disable threat weight scoring for IPS low severity events.

    low

    Use the low level score for IPS low severity events.

    medium

    Use the medium level score for IPS low severity events.

    high

    Use the high level score for IPS low severity events.

    critical

    Use the critical level score for IPS low severity events.

    medium-severity

    Threat weight score for IPS medium severity events.

    option

    -

    Option

    Description

    disable

    Disable threat weight scoring for IPS medium severity events.

    low

    Use the low level score for IPS medium severity events.

    medium

    Use the medium level score for IPS medium severity events.

    high

    Use the high level score for IPS medium severity events.

    critical

    Use the critical level score for IPS medium severity events.

    high-severity

    Threat weight score for IPS high severity events.

    option

    -

    Option

    Description

    disable

    Disable threat weight scoring for IPS high severity events.

    low

    Use the low level score for IPS high severity events.

    medium

    Use the medium level score for IPS high severity events.

    high

    Use the high level score for IPS high severity events.

    critical

    Use the critical level score for IPS high severity events.

    critical-severity

    Threat weight score for IPS critical severity events.

    option

    -

    Option

    Description

    disable

    Disable threat weight scoring for IPS critical severity events.

    low

    Use the low level score for IPS critical severity events.

    medium

    Use the medium level score for IPS critical severity events.

    high

    Use the high level score for IPS critical severity events.

    critical

    Use the critical level score for IPS critical severity events.

    Parameter name

    Description

    Type

    Size

    category

    Threat weight score for web category filtering matches.

    integer

    Minimum value: 0 Maximum value: 255

    level

    Threat weight score for web category filtering matches.

    option

    -

    Option

    Description

    disable

    Disable threat weight scoring for web category filtering matches.

    low

    Use the low level score for web category filtering matches.

    medium

    Use the medium level score for web category filtering matches.

    high

    Use the high level score for web category filtering matches.

    critical

    Use the critical level score for web category filtering matches.

    Parameter name

    Description

    Type

    Size

    country

    Country code.

    string

    Maximum length: 2

    level

    Threat weight score for Geolocation-based events.

    option

    -

    Option

    Description

    disable

    Disable threat weight scoring for Geolocation-based events.

    low

    Use the low level score for Geolocation-based events.

    medium

    Use the medium level score for Geolocation-based events.

    high

    Use the high level score for Geolocation-based events.

    critical

    Use the critical level score for Geolocation-based events.

    Parameter name

    Description

    Type

    Size

    category

    Application category.

    integer

    Minimum value: 0 Maximum value: 65535

    level

    Threat weight score for Application events.

    option

    -

    Option

    Description

    disable

    Disable threat weight scoring for Application events.

    low

    Use the low level score for Application events.

    medium

    Use the medium level score for Application events.

    high

    Use the high level score for Application events.

    critical

    Use the critical level score for Application events.
    Previous
    Next

    config log threat-weight

    config log threat-weight

    Configure threat weight settings.

    config log threat-weight

    Description: Configure threat weight settings.

    set status [enable|disable]

    config level

    Description: Score mapping for threat weight levels.

    set low {integer}

    set medium {integer}

    set high {integer}

    set critical {integer}

    end

    set blocked-connection [disable|low|...]

    set failed-connection [disable|low|...]

    set url-block-detected [disable|low|...]

    set botnet-connection-detected [disable|low|...]

    config malware

    Description: Anti-virus malware threat weight settings.

    set virus-infected [disable|low|...]

    set file-blocked [disable|low|...]

    set command-blocked [disable|low|...]

    set oversized [disable|low|...]

    set virus-scan-error [disable|low|...]

    set switch-proto [disable|low|...]

    set mimefragmented [disable|low|...]

    set virus-file-type-executable [disable|low|...]

    set virus-outbreak-prevention [disable|low|...]

    set content-disarm [disable|low|...]

    set malware-list [disable|low|...]

    set fsa-malicious [disable|low|...]

    set fsa-high-risk [disable|low|...]

    set fsa-medium-risk [disable|low|...]

    end

    config ips

    Description: IPS threat weight settings.

    set info-severity [disable|low|...]

    set low-severity [disable|low|...]

    set medium-severity [disable|low|...]

    set high-severity [disable|low|...]

    set critical-severity [disable|low|...]

    end

    config web

    Description: Web filtering threat weight settings.

    edit <id>

    set category {integer}

    set level [disable|low|...]

    next

    end

    config geolocation

    Description: Geolocation-based threat weight settings.

    edit <id>

    set country {string}

    set level [disable|low|...]

    next

    end

    config application

    Description: Application-control threat weight settings.

    edit <id>

    set category {integer}

    set level [disable|low|...]

    next

    end

    end

    config log threat-weight

    Parameter name

    Description

    Type

    Size

    status

    Enable/disable the threat weight feature.

    option

    -

    Option

    Description

    enable

    Enable the threat weight feature.

    disable

    Disable the threat weight feature.

    blocked-connection

    Threat weight score for blocked connections.

    option

    -

    Option

    Description

    disable

    Disable threat weight scoring for blocked connections.

    low

    Use the low level score for blocked connections.

    medium

    Use the medium level score for blocked connections.

    high

    Use the high level score for blocked connections.

    critical

    Use the critical level score for blocked connections.

    failed-connection

    Threat weight score for failed connections.

    option

    -

    Option

    Description

    disable

    Disable threat weight scoring for failed connections.

    low

    Use the low level score for failed connections.

    medium

    Use the medium level score for failed connections.

    high

    Use the high level score for failed connections.

    critical

    Use the critical level score for failed connections.

    url-block-detected

    Threat weight score for URL blocking.

    option

    -

    Option

    Description

    disable

    Disable threat weight scoring for URL blocking.

    low

    Use the low level score for URL blocking.

    medium

    Use the medium level score for URL blocking.

    high

    Use the high level score for URL blocking.

    critical

    Use the critical level score for URL blocking.

    botnet-connection-detected

    Threat weight score for detected botnet connections.

    option

    -

    Option

    Description

    disable

    Disable threat weight scoring for detected botnet connections.

    low

    Use the low level score for detected botnet connections.

    medium

    Use the medium level score for detected botnet connections.

    high

    Use the high level score for detected botnet connections.

    critical

    Use the critical level score for detected botnet connections.

    Parameter name

    Description

    Type

    Size

    low

    Low level score value (1 - 100).

    integer

    Minimum value: 1 Maximum value: 100

    medium

    Medium level score value (1 - 100).

    integer

    Minimum value: 1 Maximum value: 100

    high

    High level score value (1 - 100).

    integer

    Minimum value: 1 Maximum value: 100

    critical

    Critical level score value (1 - 100).

    integer

    Minimum value: 1 Maximum value: 100

    Parameter name

    Description

    Type

    Size

    virus-infected

    Threat weight score for virus (infected) detected.

    option

    -

    Option

    Description

    disable

    Disable threat weight scoring for virus (infected) detected.

    low

    Use the low level score for virus (infected) detected.

    medium

    Use the medium level score for virus (infected) detected.

    high

    Use the high level score for virus (infected) detected.

    critical

    Use the critical level score for virus (infected) detected.

    file-blocked

    Threat weight score for blocked file detected.

    option

    -

    Option

    Description

    disable

    Disable threat weight scoring for blocked file detected.

    low

    Use the low level score for blocked file detected.

    medium

    Use the medium level score for blocked file detected.

    high

    Use the high level score for blocked file detected.

    critical

    Use the critical level score for blocked file detected.

    command-blocked

    Threat weight score for blocked command detected.

    option

    -

    Option

    Description

    disable

    Disable threat weight scoring for blocked command detected.

    low

    Use the low level score for blocked command detected.

    medium

    Use the medium level score for blocked command detected.

    high

    Use the high level score for blocked command detected.

    critical

    Use the critical level score for blocked command detected.

    oversized

    Threat weight score for oversized file detected.

    option

    -

    Option

    Description

    disable

    Disable threat weight scoring for oversized file detected.

    low

    Use the low level score for oversized file detected.

    medium

    Use the medium level score for oversized file detected.

    high

    Use the high level score for oversized file detected.

    critical

    Use the critical level score for oversized file detected.

    virus-scan-error

    Threat weight score for virus (scan error) detected.

    option

    -

    Option

    Description

    disable

    Disable threat weight scoring for virus (scan error) detected.

    low

    Use the low level score for virus (scan error) detected.

    medium

    Use the medium level score for virus (scan error) detected.

    high

    Use the high level score for virus (scan error) detected.

    critical

    Use the critical level score for virus (scan error) detected.

    switch-proto

    Threat weight score for switch proto detected.

    option

    -

    Option

    Description

    disable

    Disable threat weight scoring for switch proto detected.

    low

    Use the low level score for switch proto detected.

    medium

    Use the medium level score for switch proto detected.

    high

    Use the high level score for switch proto detected.

    critical

    Use the critical level score for switch proto detected.

    mimefragmented

    Threat weight score for mimefragmented detected.

    option

    -

    Option

    Description

    disable

    Disable threat weight scoring for mimefragmented detected.

    low

    Use the low level score for mimefragmented detected.

    medium

    Use the medium level score for mimefragmented detected.

    high

    Use the high level score for mimefragmented detected.

    critical

    Use the critical level score for mimefragmented detected.

    virus-file-type-executable

    Threat weight score for virus (filetype executable) detected.

    option

    -

    Option

    Description

    disable

    Disable threat weight scoring for virus (filetype executable) detected.

    low

    Use the low level score for virus (filetype executable) detected.

    medium

    Use the medium level score for virus (filetype executable) detected.

    high

    Use the high level score for virus (filetype executable) detected.

    critical

    Use the critical level score for virus (filetype executable) detected.

    virus-outbreak-prevention

    Threat weight score for virus (outbreak prevention) event.

    option

    -

    Option

    Description

    disable

    Disable threat weight scoring for virus (outbreak prevention) event.

    low

    Use the low level score for virus (outbreak prevention) event.

    medium

    Use the medium level score for virus (outbreak prevention) event.

    high

    Use the high level score for virus (outbreak prevention) event.

    critical

    Use the critical level score for virus (outbreak prevention) event.

    content-disarm

    Threat weight score for virus (content disarm) detected.

    option

    -

    Option

    Description

    disable

    Disable threat weight scoring for virus (content disarm) detected.

    low

    Use the low level score for virus (content disarm) detected.

    medium

    Use the medium level score for virus (content disarm) detected.

    high

    Use the high level score for virus (content disarm) detected.

    critical

    Use the critical level score for virus (content disarm) detected.

    malware-list

    Threat weight score for virus (malware list) detected.

    option

    -

    Option

    Description

    disable

    Disable threat weight scoring for virus (malware list) detected.

    low

    Use the low level score for virus (malware list) detected.

    medium

    Use the medium level score for virus (malware list) detected.

    high

    Use the high level score for virus (malware list) detected.

    critical

    Use the critical level score for virus (malware list) detected.

    fsa-malicious

    Threat weight score for FortiSandbox malicious malware detected.

    option

    -

    Option

    Description

    disable

    Disable threat weight scoring for FortiSandbox malicious malware detected.

    low

    Use the low level score for FortiSandbox malicious malware detected.

    medium

    Use the medium level score for FortiSandbox malicious malware detected.

    high

    Use the high level score for FortiSandbox malicious malware detected.

    critical

    Use the critical level score for FortiSandbox malicious malware detected.

    fsa-high-risk

    Threat weight score for FortiSandbox high risk malware detected.

    option

    -

    Option

    Description

    disable

    Disable threat weight scoring for FortiSandbox high risk malware detected.

    low

    Use the low level score for FortiSandbox high risk malware detected.

    medium

    Use the medium level score for FortiSandbox high risk malware detected.

    high

    Use the high level score for FortiSandbox high risk malware detected.

    critical

    Use the critical level score for FortiSandbox high risk malware detected.

    fsa-medium-risk

    Threat weight score for FortiSandbox medium risk malware detected.

    option

    -

    Option

    Description

    disable

    Disable threat weight scoring for FortiSandbox medium risk malware detected.

    low

    Use the low level score for FortiSandbox medium risk malware detected.

    medium

    Use the medium level score for FortiSandbox medium risk malware detected.

    high

    Use the high level score for FortiSandbox medium risk malware detected.

    critical

    Use the critical level score for FortiSandbox medium risk malware detected.

    Parameter name

    Description

    Type

    Size

    info-severity

    Threat weight score for IPS info severity events.

    option

    -

    Option

    Description

    disable

    Disable threat weight scoring for IPS info severity events.

    low

    Use the low level score for IPS info severity events.

    medium

    Use the medium level score for IPS info severity events.

    high

    Use the high level score for IPS info severity events.

    critical

    Use the critical level score for IPS info severity events.

    low-severity

    Threat weight score for IPS low severity events.

    option

    -

    Option

    Description

    disable

    Disable threat weight scoring for IPS low severity events.

    low

    Use the low level score for IPS low severity events.

    medium

    Use the medium level score for IPS low severity events.

    high

    Use the high level score for IPS low severity events.

    critical

    Use the critical level score for IPS low severity events.

    medium-severity

    Threat weight score for IPS medium severity events.

    option

    -

    Option

    Description

    disable

    Disable threat weight scoring for IPS medium severity events.

    low

    Use the low level score for IPS medium severity events.

    medium

    Use the medium level score for IPS medium severity events.

    high

    Use the high level score for IPS medium severity events.

    critical

    Use the critical level score for IPS medium severity events.

    high-severity

    Threat weight score for IPS high severity events.

    option

    -

    Option

    Description

    disable

    Disable threat weight scoring for IPS high severity events.

    low

    Use the low level score for IPS high severity events.

    medium

    Use the medium level score for IPS high severity events.

    high

    Use the high level score for IPS high severity events.

    critical

    Use the critical level score for IPS high severity events.

    critical-severity

    Threat weight score for IPS critical severity events.

    option

    -

    Option

    Description

    disable

    Disable threat weight scoring for IPS critical severity events.

    low

    Use the low level score for IPS critical severity events.

    medium

    Use the medium level score for IPS critical severity events.

    high

    Use the high level score for IPS critical severity events.

    critical

    Use the critical level score for IPS critical severity events.

    Parameter name

    Description

    Type

    Size

    category

    Threat weight score for web category filtering matches.

    integer

    Minimum value: 0 Maximum value: 255

    level

    Threat weight score for web category filtering matches.

    option

    -

    Option

    Description

    disable

    Disable threat weight scoring for web category filtering matches.

    low

    Use the low level score for web category filtering matches.

    medium

    Use the medium level score for web category filtering matches.

    high

    Use the high level score for web category filtering matches.

    critical

    Use the critical level score for web category filtering matches.

    Parameter name

    Description

    Type

    Size

    country

    Country code.

    string

    Maximum length: 2

    level

    Threat weight score for Geolocation-based events.

    option

    -

    Option

    Description

    disable

    Disable threat weight scoring for Geolocation-based events.

    low

    Use the low level score for Geolocation-based events.

    medium

    Use the medium level score for Geolocation-based events.

    high

    Use the high level score for Geolocation-based events.

    critical

    Use the critical level score for Geolocation-based events.

    Parameter name

    Description

    Type

    Size

    category

    Application category.

    integer

    Minimum value: 0 Maximum value: 65535

    level

    Threat weight score for Application events.

    option

    -

    Option

    Description

    disable

    Disable threat weight scoring for Application events.

    low

    Use the low level score for Application events.

    medium

    Use the medium level score for Application events.

    high

    Use the high level score for Application events.

    critical

    Use the critical level score for Application events.
    Previous
    Next