Log ID
Logs are identified by log ID.
The log ID is a twelve-character code of the following format:
c1c2c3c4c5c6c7c8c9c10c11c12Where:
c1c2: Log type ID
c3c4: Log component ID
c5c6: Log subtype ID
c7: Priority
c8c9c10c11c12: Message ID
For example, if the log ID is the following:
010101600001c1c2: 01 (Security policy)
c3c4: 01 (Firewall rule)
c5c6: 01 (Allowed)
c7: 6 (Information)
c8c9c10c11c12: 00001 (Firewall traffic allowed)
| ID | Value |
|---|---|
| 01 | Security policy |
| 02 | IPS |
| 03 | Antivirus |
| 04 | Anti-spam |
| 05 | Content filtering |
| 06 | Event |
| 07 | WAF |
| 08 | ATP |
| 09 | EATP |
| 10 | Wireless protection |
| 11 | Heartbeat |
| 12 | System health |
| 13 | Sandbox |
| ID | Value |
|---|---|
| 01 | Firewall rule |
| 02 | Invalid traffic |
| 03 | Appliance access |
| 04 | DoS attacks |
| 05 | ICMP redirection |
| 06 | Source routed |
| 07 | Anomaly |
| 08 | Signatures |
| 09 | HTTP |
| 10 | FTP |
| 11 | SMTP |
| 12 | POP3 |
| 13 | IMAP4 |
| 14 | Fragmented traffic |
| 15 | Invalid fragmented traffic |
| 16 | HA |
| 17 | Foreign host |
| 18 | IPMAC filter |
| 19 | IP spoof |
| 20 | GUI |
| 21 | CLI |
| 22 | LCD |
| 23 | CCC |
| 24 | IM |
| 25 | IPsec |
| 26 | L2TP |
| 27 | PPTP |
| 28 | SSL VPN |
| 29 | Firewall authentication |
| 30 | VPN authentication |
| 31 | SSL VPN authentication |
| 32 | My Account authentication |
| 33 | Appliance |
| 34 | DHCP server |
| 35 | Interface |
| 36 | Gateway |
| 37 | DDNS |
| 38 | WebCat |
| 39 | IPS |
| 40 | AV |
| 41 | Dial-in authentication |
| 42 | Dial-in |
| 43 | Quarantine |
| 44 | Application filter |
| 45 | Landing page |
| 46 | WLAN |
| 47 | ARP flood |
| 48 | HTTPS |
| 49 | Guest user |
| 50 | WAF |
| 51 | Virtual host |
| 52 | CTA |
| 53 | NTLM |
| 54 | Appliances deactivated |
| 55 | PPPoE |
| 56 | External authentication |
| 57 | API |
| 58 | ICAP |
| 59 | SMTPS |
| 60 | Wireless controller |
| 61 | POPS |
| 62 | IMAPS |
| 63 | Firewall |
| 64 | DNS |
| 65 | Web proxy |
| 66 | Heartbeat |
| 67 | Endpoint |
| 68 | RED |
| 69 | ATP |
| 70 | SSL VPN client |
| 71 | IPsec client |
| 72 | Authentication client |
| 73 | RED firmware |
| 74 | AP firmware |
| 75 | up2date |
| 76 | CPU |
| 77 | Memory |
| 78 | Disk |
| 79 | Live user |
| 80 | Missing heartbeat |
| 81 | Synchronized app control |
| 82 | ICMP related packets |
| 83 | Mail proxy |
| ID | Value |
|---|---|
| 01 | Allowed |
| 02 | Denied |
| 03 | Detect |
| 04 | Drop |
| 05 | Clean |
| 06 | Virus |
| 07 | Spam |
| 08 | Probable spam |
| 09 | Admin |
| 10 | Authentication |
| 11 | System |
| 12 | OB clean |
| 13 | OB spam |
| 14 | OB probable spam |
| 15 | No modification |
| 16 | Modified headers |
| 17 | Modified body |
| 18 | 4xx error |
| 19 | 5xx error |
| 20 | Alert |
| 21 | DLP |
| 22 | SPX |
| 23 | DOS |
| 24 | Override |
| 25 | Information |
| 26 | Usage |
| 27 | Warned |
| 28 | Pending |
| ID | Value |
|---|---|
| 0 | Emergency |
| 1 | Alert |
| 2 | Critical |
| 3 | Error |
| 4 | Warning |
| 5 | Notification |
| 6 | Information |
| 7 | Debug |