20000030

Meaning
Cookie Security violation.

Field name	Description
`log_id`	20000030 See Log ID numbers.
`main_type`	Cookie Security
`subtype`	Cookie Decryption Error Cookie Signed Verification Failed IP replay protection violation

Examples
date=2022-07-11 time=15:42:10 log_id=20000030 msg_id=000000200949 device_id=FVVM08TM21000756 vd="root" timezone="(GMT-8:00)Pacific Time(US&Canada)" timezone_dayst="GMTa+7" type=attack pri=alert main_type="Cookie Security" sub_type="Cookie Signed Verification Failed" trigger_policy="N/A" severity_level=High proto=tcp service=https/tls1.2 backend_service=unknown action=Alert policy="FWB_Policy_Default_AutoTest" src=192.168.1.8 src_port=55801 dst=10.102.0.1 dst_port=80 http_method=post http_url="/autotest/multicookie.php" http_host="fortinet.fortiweb.com" http_agent="python-for-fortiweb" http_session_id=678A3E0D800473935B504EC91A6BD345 msg="Cookie name (vimay), signed verification failed; [123 -> 123456]; Domain: fortinet.fortiweb.com; Path: /autotest/" signature_subclass="N/A" signature_id="N/A" signature_cve_id="N/A" srccountry="Reserved" content_switch_name="none" server_pool_name="FWB_server_pool" false_positive_mitigation="none" user_name="Unknown" monitor_status="Disabled" http_refer="none" http_version="1.x" dev_id="52F6FBA6F468249C6C601733CEE796262963" es=0 threat_weight=50 history_threat_weight=50 threat_level=Substantial ftp_mode="N/A" ftp_cmd="N/A" cipher_suite="TLS_RSA_WITH_AES_256_GCM_SHA384" ml_log_hmm_probability=0.000000 ml_log_sample_prob_mean=0.000000 ml_log_sample_arglen_mean=0.000000 ml_log_arglen=0 ml_svm_log_main_types=0 ml_svm_log_match_types="none" ml_svm_accuracy="none" ml_domain_index=0 ml_url_dbid=0 ml_arg_dbid=0 ml_allow_method="none" owasp_top10="A01:2021-Broken Access Control" bot_info="none" client_level="Unidentified" x509_cert_subject="none" owasp_api_top10="N/A"

Examples

date=2022-07-11 time=15:42:10 log_id=20000030 msg_id=000000200949 device_id=FVVM08TM21000756 vd="root" timezone="(GMT-8:00)Pacific Time(US&Canada)" timezone_dayst="GMTa+7" type=attack pri=alert main_type="Cookie Security" sub_type="Cookie Signed Verification Failed" trigger_policy="N/A" severity_level=High proto=tcp service=https/tls1.2 backend_service=unknown action=Alert policy="FWB_Policy_Default_AutoTest" src=192.168.1.8 src_port=55801 dst=10.102.0.1 dst_port=80 http_method=post http_url="/autotest/multicookie.php" http_host="fortinet.fortiweb.com" http_agent="python-for-fortiweb" http_session_id=678A3E0D800473935B504EC91A6BD345 msg="Cookie name (vimay), signed verification failed; [123 -> 123456]; Domain: fortinet.fortiweb.com; Path: /autotest/" signature_subclass="N/A" signature_id="N/A" signature_cve_id="N/A" srccountry="Reserved" content_switch_name="none" server_pool_name="FWB_server_pool" false_positive_mitigation="none" user_name="Unknown" monitor_status="Disabled" http_refer="none" http_version="1.x" dev_id="52F6FBA6F468249C6C601733CEE796262963" es=0 threat_weight=50 history_threat_weight=50 threat_level=Substantial ftp_mode="N/A" ftp_cmd="N/A" cipher_suite="TLS_RSA_WITH_AES_256_GCM_SHA384" ml_log_hmm_probability=0.000000 ml_log_sample_prob_mean=0.000000 ml_log_sample_arglen_mean=0.000000 ml_log_arglen=0 ml_svm_log_main_types=0 ml_svm_log_match_types="none" ml_svm_accuracy="none" ml_domain_index=0 ml_url_dbid=0 ml_arg_dbid=0 ml_allow_method="none" owasp_top10="A01:2021-Broken Access Control" bot_info="none" client_level="Unidentified" x509_cert_subject="none" owasp_api_top10="N/A"

Meaning
Cookie Security violation.

Field name	Description
`log_id`	20000030 See Log ID numbers.
`main_type`	Cookie Security
`subtype`	Cookie Decryption Error Cookie Signed Verification Failed IP replay protection violation

Examples
date=2022-07-11 time=15:42:10 log_id=20000030 msg_id=000000200949 device_id=FVVM08TM21000756 vd="root" timezone="(GMT-8:00)Pacific Time(US&Canada)" timezone_dayst="GMTa+7" type=attack pri=alert main_type="Cookie Security" sub_type="Cookie Signed Verification Failed" trigger_policy="N/A" severity_level=High proto=tcp service=https/tls1.2 backend_service=unknown action=Alert policy="FWB_Policy_Default_AutoTest" src=192.168.1.8 src_port=55801 dst=10.102.0.1 dst_port=80 http_method=post http_url="/autotest/multicookie.php" http_host="fortinet.fortiweb.com" http_agent="python-for-fortiweb" http_session_id=678A3E0D800473935B504EC91A6BD345 msg="Cookie name (vimay), signed verification failed; [123 -> 123456]; Domain: fortinet.fortiweb.com; Path: /autotest/" signature_subclass="N/A" signature_id="N/A" signature_cve_id="N/A" srccountry="Reserved" content_switch_name="none" server_pool_name="FWB_server_pool" false_positive_mitigation="none" user_name="Unknown" monitor_status="Disabled" http_refer="none" http_version="1.x" dev_id="52F6FBA6F468249C6C601733CEE796262963" es=0 threat_weight=50 history_threat_weight=50 threat_level=Substantial ftp_mode="N/A" ftp_cmd="N/A" cipher_suite="TLS_RSA_WITH_AES_256_GCM_SHA384" ml_log_hmm_probability=0.000000 ml_log_sample_prob_mean=0.000000 ml_log_sample_arglen_mean=0.000000 ml_log_arglen=0 ml_svm_log_main_types=0 ml_svm_log_match_types="none" ml_svm_accuracy="none" ml_domain_index=0 ml_url_dbid=0 ml_arg_dbid=0 ml_allow_method="none" owasp_top10="A01:2021-Broken Access Control" bot_info="none" client_level="Unidentified" x509_cert_subject="none" owasp_api_top10="N/A"

Examples