![]() ![]() This means show all traffic with a source OR destination address not matching 1.1.1.1 Zone Traffic Filter Examples:Įxplanation: shows all traffic coming from the PROTECT zoneĮxplanation: shows all traffic going out the OUTSIDE zone To display all traffic except to and from Host a.a.a.aĮxplanation: The "!" symbol is " not" opeator.Note that you cannot specify an actual range but can use CIDR notation to specify a network range of addressesĮxplanation: shows all traffic coming from addresses ranging from 10.10.10.1 - 10.10.10.3.Įxplanation: shows all traffic with a source OR destination address of a host that matches 1.1.1.1 (addr.src in a.a.a.a) and (addr.dst in b.b.b.b)Įxample: (addr.src in 1.1.1.1) and (addr.dst in 2.2.2.2)Įxplanation: shows all traffic coming from a host with an IP address of 1.1.1.1 and going to a host destination address of 2.2.2.2 At the end of the list, we include a few examples that combine various filters for more comprehensive searching.Įxplanation: shows all traffic from host ip address that matches 1.1.1.1 (addr.src in a.a.a.a)Įxplanation: shows all traffic with a destination address of a host that matches 2.2.2.2 Categories of filters include host, zone, port, or date/time. This document demonstrates several methods of filtering and looking for specific types of traffic on Palo Alto Networks firewalls. The filters need to be put in the search section under GUI: Monitor > Logs > Traffic (or other logs). ![]() When Trying to search for a log with a source IP, destination IP or any other flags, Filters can be used.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |