ID: select-action
This filter specification can be used to select only the firewall events that were permitted or denied.
Parameters
This parameter contains the action that should selected:
Select only denied events.
Select only permitted events.
This is also a possible action when we can't determine from the log information if this event was denied or permitted.
Defaults to denied.
ID: select-from-ip
This filter specification can be used to select the packets coming from a particular host.
Parameters
This parameter contains the regular expression that will be used to select packets coming from particular hosts. Only packets sent from a host matching that regexp will be included in the subreports. The match is done on the client IP address (not its hostname).
Defaults to .*.
ID: select-to-ip
This filter specification can be used to select packets sent to a particular host.
Parameters
This parameter contains the regular expression that will be used to select the packets sent to a particular host. Only packets sent to a host matching that regexp will be included in the subreports. The match is done on the host's IP address (not its hostname).
Defaults to .*.