Join the Conversation

To sign in, use your existing MySonicWall account. To create a free MySonicWall account click "Register".

Options

Can Analytics filter traffic by Access Rule matched

Hello,

In Analytics On-premises, ¿do you know if there is any way to filter traffic session logs by firewall rule, so that one can know which sources and destinations are matching a rule?

Thank you.

Category: Firewall Management and Analytics
Reply

Answers

  • Options
    SaravananSaravanan Moderator

    Hi @YUBER_SIERRA,

    Thank you for visiting SonicWall Community.

    Traffic session logs can be filtered using parameters such as source, destination, users, etc,., Unfortunately, not by the access rule that matches the traffic. This is because, access rule matching happens at the firewall and firewall just sends the syslogs/flows to the on-prem analytics. So the analytics wouldn't know the way of what rule was matched on the firewall and it only knows the logs sent from the firewall.

    Hope this clarifies.

    Regards

    Saravanan V

    Technical Support Advisor - Premier Services

    Professional Services

Sign In or Register to comment.