Fortview Reference

Leave a reply

Column name                          Description

 

Security Action                        Displays the action taken in response to the selected security event. The types of possible actions are as follows:

 

  • Allowed: No threat was detected and the connection was let through.
  • Blocked: A threat was detected and the connection was not let through.
  • Reset: A possible issue was detected and the connection was reset.
  • Traffic Shape: Some data packets may have been delayed to improve system-wide performance.

Sessions                                  Displays the number of sessions associated with the selected destination.

Note: This column only appears in the Destinations console, in the noTime Display view.

 

Sessions

(Blocked/Allowed)

Displays the number of sessions blocked and allowed by FortiOs.

In some consoles, entries can be sorted by number of sessions by selecting the column header..

 

Severity                                    Displays the severity level (Critical, High, Medium or Low) associated with the selected security event.

Source                                      Displays the source IP address and/or user ID, if applicable.

Source Interface                        Displays which interface is being used by the destination server (eg. wan1).

Source Port                                Displays the port number being used by the source server to send data.

Source SSID                               Displays the Service Set Identifier (SSID) associated with the selected user.

 

Src NAT IP NAT Source

Note: This column is only available in the Wifi Clients console.

 

Displays the Network Address Translation (NAT) IP address associated with the source server.

Src NAT Port

NAT Source Port

Displays the Network Address Translation (NAT) port number associated with the source server.

 

Column name                          Description

Status                                       The types of possible status’ are Malicious, High, Medium, Low, Clean,

Unknown, and Pending.

Note: This console is only available in the FortiSandbox console, in Files

view.

Submitted                                Displays the number of files submitted to the FortiSandbox for assessment in the selected session.

Note: This column is only available in the FortiSandbox console, in Fileview.

Threat                                       Displays the threat type detected in the selected session.

Threat Score

(Blocked/Allowed)

Displays the threat score value, a measurement of the total number of threats detected over the course of the session. You can select the column header to sort entries by threat score.

Threat Weight                          Displays the threat weight profile associated with the selected session.

Timestamp                               Displays the selected session’s PHP timestamp.

User

User Name

 

Displays the user name associated with the selected administrator.

Videos Played                          Displays the number of videos played via cloud applications.

Note: This column is only available in the Cloud Applications console.

Pages: 1 2 3 4 5 6 7 8
This entry was posted in FortiOS 5.4 Handbook and tagged , , on by .

About Mike

Michael Pruett, CISSP has a wide range of cyber-security and network engineering expertise. The plethora of vendors that resell hardware but have zero engineering knowledge resulting in the wrong hardware or configuration being deployed is a major pet peeve of Michael's. This site was started in an effort to spread information while providing the option of quality consulting services at a much lower price than Fortinet Professional Services. Owns PacketLlama.Com (Fortinet Hardware Sales) and Office Of The CISO, LLC (Cybersecurity consulting firm).

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.