Document toolboxDocument toolbox

waf.cequence

Introduction

The tags beginning with waf.cequence identify events generated by Cequence Unified API Protection Platform belonging to Cequence security.

Valid tags and data tables 

The full tag must have 3 levels. The first two are fixed as waf.cequence and the third identifies the type of events sent.

These are the valid tags and corresponding data tables that will receive the parsers' data:

Product / Service

Tags

Data tables

Product / Service

Tags

Data tables

Cequence Unified API Protection Platform

waf.cequence.botdefense

waf.cequence.botdefense

For more information, read more About Devo tags.

Table structure

These are the fields displayed in this table:

waf.cequence.botdefense

Field

Type

Extra fields

Field

Type

Extra fields

eventdate

timestamp

 

timestamp

timestamp

 

header_value_user_agent

str

 

client_ip

ip4

 

country

str

 

host

str

 

uri

str

 

server_ip

ip4

 

organization

str

 

isp

str

 

asn

int4

 

expert_rules_weight

int4

 

experimental_rules_weight

int4

 

expert_rules_info_rule_id

str

 

header_value_referer

str

 

http_feature_vector

str

 

projected_browser

str

 

predicted_browser

str

 

predicted_browser_index

int4

 

projected_browser_major_version

int4

 

username

str

 

method

str

 

type

str

 

client_ciphers

str

 

extractedData

str

 

query_params

str

 

header_value_accept

str

 

header_value_accept_encoding

str

 

header_value_accept_language

str

 

header_value_cache_control

str

 

header_value_connection

str

 

header_value_date

str

 

header_value_dnt

str

 

header_value_keep_alive

str

 

header_value_pragma

str

 

header_value_te

str

 

header_value_true_client_ip

ip4

 

header_value_content_type

str

 

header_value_accept_charset

str

 

http_fingerprint

timestamp

 

policy_id

str

 

policy_name

str

 

policy_version

int4

 

hostchain

str

✓

tag

str

✓

rawMessage

str

 

Â