Does anyone know how to monitor a range of IP traffic on the firewall? Note: i'm trying to view the historical traffic data on the firewall as it's not pertinent to set up a new rule and monitor all traffic to/from the range requested of me.
i'm currently running version 10.0.5 on a PA3020 and i've been requested to check for any traffic from a range of IP addresses (ex: 184.108.40.206 - 220.127.116.11). Some of the ranges requested to monitor are quite large so it's going to be painful to go through each IP address in each range so i'm looking for a faster way of check this historical data.
any assistance is appreciated.
Thank you. That helps. (This will work for me but I was hoping it would filter out the additional addresses within the subnet that aren't needed in my research.)
(This company request is a wild goose chase that they have me on and there's nothing like a wild goose chase to waste a day.)
You can use this filter (addr notin 'ip address') to filter out the additional addresses in addition to the above subnet filter ( addr in 18.104.22.168/24)
For e.g. ( addr in 22.214.171.124/24) and (addr notin '126.96.36.199') or you can use more subnet specific filters for e.g. just for range ex: 188.8.131.52 - 184.108.40.206, the filter will look like ( addr in 220.127.116.11/28)
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the Live Community as a whole!
The Live Community thanks you for your participation!