<< PREVIOUS                                                                                                        NEXT >>

CMS USER IP ADDRESS BLOCKED

1. Code: 108

2. Brief Description: User IP Address Blocked

3. Provided Information:

   1. IP Address of the user

   2. Reason

   3. Role of the user

   4. Blocked at (timestamp)

4. Sample log message:

   1. CEF format

       

      Jul 28 09:04:59 10.16.6.4 CEF: 1|Virsec Security Platform|Virsec|1.3.4|108|IP Address Blocked|8|src=10.16.6.4 reason(s)=Exceeded invalid login attempts. ip_address=10.16.3.114 blocked_at=28 Jul 2020 01:05:35 PM UTC msg=IP address 10.16.3.114 blocked for next 20 minutes.

   2. CEF - Fixed Key Definition format

       

      Sep  7 10:04:37 10.16.6.4 CEF: 1|Virsec Security Platform|Virsec|1.4.0|108|IP Address Blocked|8|cs1Label=src cs1=10.16.6.4 cs2Label=reason(s) cs2=Exceeded invalid login attempts. cs3Label=ip_address cs3=10.16.3.114 cs4Label=blocked_at cs4=07 Sep 2020 02:06:04 PM UTC cs5Label=msg cs5=IP address 10.16.3.114 blocked for next 20 minutes.

<< PREVIOUS                          NEXT >>