![]() All Traffic That Has Been Allowed By The Firewall RulesĮxplanation: shows all traffic allowed by the firewall rules.All Traffic Outbound On Interface ethernet1/xĮxample: (interface.dst eq 'ethernet1/5')Įxplanation: shows all traffic that was sent out on the PA Firewall interface Ethernet 1/5. ![]() ![]() All Traffic Inbound On Interface ethernet1/xĮxample: (interface.src eq 'ethernet1/2')Įxplanation: shows all traffic that was received on the PA Firewall interface Ethernet 1/2.(receive_time geq 'yyyy/mm/dd hh:mm:ss') and (receive_time leq 'YYYY/MM/DD HH:MM:SS')Įxample: (receive_time geq '0 08:30:00') and (receive_time leq '1 01:25:00')Įxplanation: shows all traffic that was received between Aug8:30am and August 31, 2015 01:25 am All Traffic Received Between The Date-Time Range Of yyyy/mm/dd hh:mm:ss and YYYY/MM/DD HH:MM:SS.All Traffic Received On Or After The Date yyyy/mm/dd And Time hh:mm:ssĮxplanation: shows all traffic that was received on or after Augat 8:30am.All Traffic Received On Or Before The Date yyyy/mm/dd And Time hh:mm:ssĮxplanation: shows all traffic that was received on or before Augat 8:30am.All Traffic for a Specific Date yyyy/mm/dd And Time hh:mm:ssĮxplanation: shows all traffic that was received on Augat 8:30am.To All Ports Greater Than Or Equal To Port aaĮxplanation: shows all traffic traveling to destination ports 1024-65535Įxample: (port.src geq 20) and (port.src leq 53)Įxplanation: shows all traffic traveling from source port range 20-53Įxample: (port.dst geq 1024) and (port.dst leq 13002)Įxplanation: shows all traffic traveling to destination ports 1024 - 13002.To All Ports Less Than Or Equal To Port aaĮxplanation: shows all traffic traveling to destination ports 1-1024.From All Ports Greater Than Or Equal To Port aaĮxplanation: shows all traffic traveling from source ports 1024 - 65535.From All Ports Less Than or Equal To Port aaĮxplanation: shows all traffic traveling from source ports 1-22.(zone.src eq zone_a) and (zone.dst eq zone_b)Įxample: (zone.src eq PROTECT) and (zone.dst eq OUTSIDE)Įxplanation: shows all traffic traveling from the PROTECT zone and going out the OUTSIDE zoneĮxplanation: shows all traffic traveling from source port 22Įxplanation: shows all traffic traveling to destination port 25Įxample: (port.src eq 23459) and (port.dst eq 22)Įxplanation: shows all traffic traveling from source port 23459 and traveling to destination port 22 ![]() This means show all traffic with a source OR destination address not matching 1.1.1.1 Zone Traffic Filter Examples:Įxplanation: shows all traffic coming from the PROTECT zoneĮxplanation: shows all traffic going out the OUTSIDE zone
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |