Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions

    • FortiOS Log Message Reference

    Home FortiGate / FortiOS 6.4.4 FortiOS Log Message Reference
    6.4.4
    7.6.0
    7.4.5
    7.4.4
    7.4.3
    7.4.2
    7.4.1
    7.4.0
    7.2.10
    7.2.9
    7.2.8
    7.2.7
    7.2.6
    7.2.5
    7.2.4
    7.2.3
    7.2.2
    7.2.1
    7.2.0
    7.0.16
    7.0.15
    7.0.14
    7.0.13
    7.0.12
    7.0.11
    7.0.10
    7.0.9
    7.0.8
    7.0.7
    7.0.6
    7.0.5
    7.0.4
    7.0.3
    7.0.2
    7.0.1
    7.0.0
    6.4.15
    6.4.14
    6.4.13
    6.4.12
    6.4.11
    6.4.10
    6.4.9
    6.4.8
    6.4.7
    6.4.6
    6.4.5
    6.4.4
    6.4.3
    6.4.2
    6.4.1
    6.4.0
    6.2.16
    6.2.15
    6.2.14
    6.2.13
    6.2.12
    6.2.11
    6.2.10
    6.2.9
    6.2.8
    6.2.7
    6.2.6
    6.2.5
    6.2.4
    6.2.3
    6.2.2
    6.2.1
    6.2.0
    6.0.18
    6.0.17
    6.0.16
    6.0.15
    6.0.14
    6.0.13
    6.0.12
    6.0.11
    6.0.10
    6.0.9
    6.0.8
    6.0.7
    6.0.6
    6.0.5
    6.0.4
    6.0.3
    6.0.2
    6.0.1
    6.0.0
    5.6.14
    5.6.13
    5.6.12
    5.6.11
    5.6.10
    5.6.9
    5.6.8
    5.6.7
    5.6.6
    5.6.5
    5.6.4
    5.6.3
    5.6.2
    5.6.1
    5.6.0
    5.4.13
    5.4.12
    5.4.11
    5.4.9
    5.4.8
    5.4.7
    5.4.6
    5.4.5
    5.4.4
    5.4.3
    5.4.2
    5.4.1
    5.4.0
    5.2.15
    5.2.14
    5.2.13
    5.2.12
    5.2.11
    5.2.10
    5.2.8
    5.2.7
    5.2.6
    5.2.5
    5.2.4
    5.2.3
    5.2.2
    5.2.1

    44033 - LOGID_EVENT_VOIP_SIP_BLOCK

    44033 - LOGID_EVENT_VOIP_SIP_BLOCK

    Message ID: 44033

    Message Description: LOGID_EVENT_VOIP_SIP_BLOCK

    Message Meaning: VoIP SIP blocked

    Type: VoIP

    Category: VOIP

    Severity: Notice

    Log Field Name

    Description

    Data Type

    Length

    action

    Action. Eg. block , allow

    string

    15

    call_id

    Ex: call_id="1-22011@10.6.30.11"

    string

    64

    count

    Session count

    uint32

    10

    date

    Day, month, and year when the log message was recorded.

    string

    10

    devid

    Serial number of the device for the traffic's origin.

    string

    16

    dir

    Destination Interface

    string

    16

    dstip

    Destination IP

    ip

    39

    dst_int

    Destination Interface

    string

    16

    dst_port

    Destination port

    uint16

    5

    duration

    Duration of the session. Ex: 180 (in seconds)

    uint32

    10

    epoch

    Epoch

    uint32

    10

    eventtime

    Time when event occured

    uint64

    20

    event_id

    Unique event ID

    uint32

    10

    from

    Where call was originated from

    string

    128

    kind

    Kind of service. Typically it will have value "call"

    string

    10

    level

    Log Level

    string

    11

    logid

    Unique Log ID

    string

    10

    message_type

    Message Type. Ex: message_type="request"

    string

    16

    policy_id

    Name of the firewall policy governing the traffic which caused the log message.

    uint32

    10

    profile

    Name or number of associated VOIP profile

    string

    64

    proto

    Protocol number. Ex: for SIP it will be proto=17

    uint8

    3

    reason

    Reason. Ex: reason="unrecognized-form"

    string

    128

    request_name

    Name of request. Ex: request_name="INVITE" or "NOTIFY"

    string

    64

    session_id

    Session ID. Ex: session_id=232

    uint32

    10

    srcip

    IP address of the traffic's origin. Ex: srcip=10.1.100.155

    ip

    39

    src_int

    Name of the source interface. Ex: src_int="port1"

    string

    16

    src_port

    Port number of the traffic's origin. Ex: srcport=40772

    uint16

    5

    status

    Status. Ex: status="blocked" , status= "start"

    string

    23

    subtype

    Subtype

    string

    20

    time

    Hour clock when the log message was recorded.

    string

    8

    to

    Destination address

    string

    512

    type

    Type of log. Ex: type="utm"

    string

    16

    tz

    Time zone

    string

    5

    vd

    Name of the virtual domain in which the log message was recorded.

    string

    32

    voip_proto

    SIP/SCCP/MGCP/h323

    string

    4
    Previous
    Next

    44033 - LOGID_EVENT_VOIP_SIP_BLOCK

    44033 - LOGID_EVENT_VOIP_SIP_BLOCK

    Message ID: 44033

    Message Description: LOGID_EVENT_VOIP_SIP_BLOCK

    Message Meaning: VoIP SIP blocked

    Type: VoIP

    Category: VOIP

    Severity: Notice

    Log Field Name

    Description

    Data Type

    Length

    action

    Action. Eg. block , allow

    string

    15

    call_id

    Ex: call_id="1-22011@10.6.30.11"

    string

    64

    count

    Session count

    uint32

    10

    date

    Day, month, and year when the log message was recorded.

    string

    10

    devid

    Serial number of the device for the traffic's origin.

    string

    16

    dir

    Destination Interface

    string

    16

    dstip

    Destination IP

    ip

    39

    dst_int

    Destination Interface

    string

    16

    dst_port

    Destination port

    uint16

    5

    duration

    Duration of the session. Ex: 180 (in seconds)

    uint32

    10

    epoch

    Epoch

    uint32

    10

    eventtime

    Time when event occured

    uint64

    20

    event_id

    Unique event ID

    uint32

    10

    from

    Where call was originated from

    string

    128

    kind

    Kind of service. Typically it will have value "call"

    string

    10

    level

    Log Level

    string

    11

    logid

    Unique Log ID

    string

    10

    message_type

    Message Type. Ex: message_type="request"

    string

    16

    policy_id

    Name of the firewall policy governing the traffic which caused the log message.

    uint32

    10

    profile

    Name or number of associated VOIP profile

    string

    64

    proto

    Protocol number. Ex: for SIP it will be proto=17

    uint8

    3

    reason

    Reason. Ex: reason="unrecognized-form"

    string

    128

    request_name

    Name of request. Ex: request_name="INVITE" or "NOTIFY"

    string

    64

    session_id

    Session ID. Ex: session_id=232

    uint32

    10

    srcip

    IP address of the traffic's origin. Ex: srcip=10.1.100.155

    ip

    39

    src_int

    Name of the source interface. Ex: src_int="port1"

    string

    16

    src_port

    Port number of the traffic's origin. Ex: srcport=40772

    uint16

    5

    status

    Status. Ex: status="blocked" , status= "start"

    string

    23

    subtype

    Subtype

    string

    20

    time

    Hour clock when the log message was recorded.

    string

    8

    to

    Destination address

    string

    512

    type

    Type of log. Ex: type="utm"

    string

    16

    tz

    Time zone

    string

    5

    vd

    Name of the virtual domain in which the log message was recorded.

    string

    32

    voip_proto

    SIP/SCCP/MGCP/h323

    string

    4
    Previous
    Next