UTM : WebFilter

https://docs.fortinet.com/document/fortigate/6.0.6/fortios-log-message-reference/524940/introduction

UTM : WebFilter

Base Rule

Information

General WebFilter Event

Webfilter Url Filter Block

Sub Rule

Information

General WebFilter URLFilter

Webfilter Url Filter Exempt

Sub Rule

Information

General WebFilter URLFilter

Webfilter Url Filter Allow

Sub Rule

Information

General WebFilter URLFilter

Webfilter Url Filter Srv Cert Err Blk

Sub Rule

Information

General WebFilter URLFilter

Webfilter Url Filter Srv Cert Err Pass

Sub Rule

Information

General WebFilter URLFilter

Webfilter Web Ftgd Warning

Sub Rule

Information

General WebFilter URLFilter

Webfilter Web Ftgd Cat Blk

Sub Rule

Information

General WebFilter URLFilter

Webfilter Web Ftgd Cat Warn

Sub Rule

Information

General WebFilter URLFilter

Webfilter Web Ftgd Cat Allow

Sub Rule

Information

General WebFilter URLFilter

Webfilter Web Url

Sub Rule

Information

General WebFilter URLFilter

Webfilter Web Scriptfilter ActiveX

Sub Rule

Information

General WebFilter URLFilter

Device Key in Log Message

LogRhythm Schema

Data Type

Schema Description

severity

<severity>

Text/String

severity

logid

<vmid>

<tag1>

Number

N/A

sessionid

<session>

Number/Text/String

N/A

user

<login>

Text/String

N/A

group

<group>

Text/String

N/A

srcip

<sip>

IP Address

N/A

srcport

<sport>

Number

N/A

srcintf

<sinterface>

Text/String/Number

N/A

dstip

<dip>

IP Address

N/A

dstport

<dport>

Number

N/A

dstintf

<dinterface>

Text/String/Number

N/A

proto

<protnum>

Number

N/A

action

<action>

Text/String

N/A

service

<sessiontype>

Text/String

N/A

hostname

<sname>

Text/String

N/A

url

<url>

Text/String

N/A

sentbyte

<bytesin>

Number

N/A

rcvdbyte

<bytesout>

Number

N/A

keyword

<object>

Text/String

N/A

msg

<subject>

Text/String

N/A

method

<policy>

Text/String

N/A

cat

<size>

Number

N/A

catdesc

<group>

Text/String

N/A