Fortinet black logo

Log Message Reference

Home FortiWeb 7.4.0 Log Message Reference
7.4.0
7.4.0
7.2.2
7.2.1
7.2.0
7.0.4
7.0.3
7.0.2
7.0.0
6.4.2
6.4.1
6.3.17
6.3.16
6.3.15
6.3.14
6.3.13
6.3.11
6.3.10
6.3.9
6.3.4
6.3.3
6.3.2
6.3.1
6.3.0
6.2.6
6.2.5
6.2.4
6.2.3
6.2.2
6.2.1
4.4.6
4.4.4
4.4.3
4.4.2
4.4.1

20000022

20000022

Meaning

IP reputation violation.

Field name Description

log_id

20000022

See Log ID numbers.

main_type

IP Reputation

subtype

  • Botnet
  • Anonymous Proxy
  • Phishing
  • Spam
  • Tor
  • Others

Examples

date=2022-07-25 time=10:53:21 log_id=20000022 msg_id=000003643355 device_id=FVVM04TM22000797 vd="root" timezone="(GMT-8:00)Pacific Time(US&Canada)" timezone_dayst="GMTa+7" type=attack pri=alert main_type="IP Reputation" sub_type="Tor" trigger_policy="N/A" severity_level=High proto=tcp service=http backend_service=tcp action=Alert_Deny policy="FWB_Policy_Default_AutoTest" src=185.220.100.252 src_port=10000 dst=185.220.100.10 dst_port=80 http_method=none http_url="none" http_host="none" http_agent="none" http_session_id=none msg="Bad IP triggered ip reputation category Tor" signature_subclass="N/A" signature_id="N/A" signature_cve_id="N/A" srccountry="Germany" content_switch_name="none" server_pool_name="none" false_positive_mitigation="none" user_name="Unknown" monitor_status="Disabled" http_refer="none" http_version="Unknown" dev_id="23345892624CCCC3DB86B0743DD1DA7BED25" es=0 threat_weight=500 history_threat_weight=2000 threat_level=Critical ftp_mode="N/A" ftp_cmd="N/A" cipher_suite="none" ml_log_hmm_probability=0.000000 ml_log_sample_prob_mean=0.000000 ml_log_sample_arglen_mean=0.000000 ml_log_arglen=0 ml_svm_log_main_types=0 ml_svm_log_match_types="none" ml_svm_accuracy="none" ml_domain_index=0 ml_url_dbid=0 ml_arg_dbid=0 ml_allow_method="none" owasp_top10="N/A" bot_info="none" client_level="Malicious" x509_cert_subject="none" owasp_api_top10="N/A"
Previous
Next

20000022

Meaning

IP reputation violation.

Field name Description

log_id

20000022

See Log ID numbers.

main_type

IP Reputation

subtype

  • Botnet
  • Anonymous Proxy
  • Phishing
  • Spam
  • Tor
  • Others

Examples

date=2022-07-25 time=10:53:21 log_id=20000022 msg_id=000003643355 device_id=FVVM04TM22000797 vd="root" timezone="(GMT-8:00)Pacific Time(US&Canada)" timezone_dayst="GMTa+7" type=attack pri=alert main_type="IP Reputation" sub_type="Tor" trigger_policy="N/A" severity_level=High proto=tcp service=http backend_service=tcp action=Alert_Deny policy="FWB_Policy_Default_AutoTest" src=185.220.100.252 src_port=10000 dst=185.220.100.10 dst_port=80 http_method=none http_url="none" http_host="none" http_agent="none" http_session_id=none msg="Bad IP triggered ip reputation category Tor" signature_subclass="N/A" signature_id="N/A" signature_cve_id="N/A" srccountry="Germany" content_switch_name="none" server_pool_name="none" false_positive_mitigation="none" user_name="Unknown" monitor_status="Disabled" http_refer="none" http_version="Unknown" dev_id="23345892624CCCC3DB86B0743DD1DA7BED25" es=0 threat_weight=500 history_threat_weight=2000 threat_level=Critical ftp_mode="N/A" ftp_cmd="N/A" cipher_suite="none" ml_log_hmm_probability=0.000000 ml_log_sample_prob_mean=0.000000 ml_log_sample_arglen_mean=0.000000 ml_log_arglen=0 ml_svm_log_main_types=0 ml_svm_log_match_types="none" ml_svm_accuracy="none" ml_domain_index=0 ml_url_dbid=0 ml_arg_dbid=0 ml_allow_method="none" owasp_top10="N/A" bot_info="none" client_level="Malicious" x509_cert_subject="none" owasp_api_top10="N/A"
Previous
Next