Fortinet black logo

Log Message Reference

Home FortiWeb 7.0.4 Log Message Reference
7.0.4
7.4.0
7.2.2
7.2.1
7.2.0
7.0.4
7.0.3
7.0.2
7.0.0
6.4.2
6.4.1
6.3.17
6.3.16
6.3.15
6.3.14
6.3.13
6.3.11
6.3.10
6.3.9
6.3.4
6.3.3
6.3.2
6.3.1
6.3.0
6.2.6
6.2.5
6.2.4
6.2.3
6.2.2
6.2.1
4.4.6
4.4.4
4.4.3
4.4.2
4.4.1

20000014

20000014

Meaning

DoS protection violation.

Field name Description

log_id

20000014

See Log ID numbers.

main_type

DoS Protection

subtype

  • HTTP Flood Prevention
  • Malicious IPs
  • HTTP Access Limit
  • TCP Flood Prevention

Examples

date=2022-07-25 time=12:42:43 log_id=20000014 msg_id=000003644544 device_id=FVVM04TM22000797 vd="root" timezone="(GMT-8:00)Pacific Time(US&Canada)" timezone_dayst="GMTa+7" type=attack pri=alert main_type="DoS Protection" sub_type="HTTP Access Limit" trigger_policy="N/A" severity_level=Medium proto=tcp service=http backend_service=unknown action=Alert_Deny policy="FWB_Policy_Default_AutoTest" src=44.1.28.2 src_port=23896 dst=10.20.128.42 dst_port=80 http_method=post http_

url="/autotest/test2.html" http_host="fortinet.fortiweb.com" http_agent="python-for-fortiweb" http_session_id=none msg="HTTP Access Limit Violation" signature_subclass="N/A" signature_id="N/A" signature_cve_id="N/A" srccountry="United States" content_switch_name="none" server_pool_name="FWB_server_pool" false_positive_mitigation="none" user_name="Unknown" monitor_status="Disabled" http_refer="none" http_version="1.x" dev_id="9365DE6B98A2F64B4816AAA1181206DCF3B8" es=0 threat_weight=498 history_threat_weight=59899420 threat_level=Substantial ftp_mode="N/A" ftp_cmd="N/A" cipher_suite="none" ml_log_hmm_probability=0.000000 ml_log_sample_prob_mean=0.000000 ml_log_sample_arglen_mean=0.000000 ml_log_arglen=0 ml_svm_log_main_types=0 ml_svm_log_match_types="none" ml_svm_accuracy="none" ml_domain_index=0 ml_url_dbid=0 ml_arg_dbid=0 ml_allow_method="none" owasp_top10="N/A" bot_info="none" client_level="Malicious" x509_cert_subject="none" owasp_api_top10="API4:2019 Lack of Resources & Rate Limiting"
Previous
Next

20000014

Meaning

DoS protection violation.

Field name Description

log_id

20000014

See Log ID numbers.

main_type

DoS Protection

subtype

  • HTTP Flood Prevention
  • Malicious IPs
  • HTTP Access Limit
  • TCP Flood Prevention

Examples

date=2022-07-25 time=12:42:43 log_id=20000014 msg_id=000003644544 device_id=FVVM04TM22000797 vd="root" timezone="(GMT-8:00)Pacific Time(US&Canada)" timezone_dayst="GMTa+7" type=attack pri=alert main_type="DoS Protection" sub_type="HTTP Access Limit" trigger_policy="N/A" severity_level=Medium proto=tcp service=http backend_service=unknown action=Alert_Deny policy="FWB_Policy_Default_AutoTest" src=44.1.28.2 src_port=23896 dst=10.20.128.42 dst_port=80 http_method=post http_

url="/autotest/test2.html" http_host="fortinet.fortiweb.com" http_agent="python-for-fortiweb" http_session_id=none msg="HTTP Access Limit Violation" signature_subclass="N/A" signature_id="N/A" signature_cve_id="N/A" srccountry="United States" content_switch_name="none" server_pool_name="FWB_server_pool" false_positive_mitigation="none" user_name="Unknown" monitor_status="Disabled" http_refer="none" http_version="1.x" dev_id="9365DE6B98A2F64B4816AAA1181206DCF3B8" es=0 threat_weight=498 history_threat_weight=59899420 threat_level=Substantial ftp_mode="N/A" ftp_cmd="N/A" cipher_suite="none" ml_log_hmm_probability=0.000000 ml_log_sample_prob_mean=0.000000 ml_log_sample_arglen_mean=0.000000 ml_log_arglen=0 ml_svm_log_main_types=0 ml_svm_log_match_types="none" ml_svm_accuracy="none" ml_domain_index=0 ml_url_dbid=0 ml_arg_dbid=0 ml_allow_method="none" owasp_top10="N/A" bot_info="none" client_level="Malicious" x509_cert_subject="none" owasp_api_top10="API4:2019 Lack of Resources & Rate Limiting"
Previous
Next