Policy > Security > East West Security > Distributed IDS > Dashboard

Get the list of the IPs affected for that signature for intrusion events detected on gateway

Get the list of IP addresses affected pertaining to a specific
signature for intrusion events detected on gateway.

Request:

Method:
POST
URI Path(s):
/policy/api/v1/infra/settings/firewall/security/intrusion-services/affected-ips
Request Headers:
n/a
Query Parameters:
ListRequestParameters+
Request Body:
PolicyIdsEventDataRequest+

Example Request:

POST https://<policy-mgr>/policy/api/v1/infra/settings/firewall/security/intrusion-services/affected-ips { "filters": [ { "field_names":"intrusion_timestamp","value":" >1590533447645" }, { "field_names": "signature_detail.signature_id", "value": "(4010643)" } ] }

Successful Response:

Response Code:
200 OK
Response Headers:
Content-type: application/json
Response Body:
PolicyIdsIpList+

Example Response:

{ "results": [ "10.108.24.20", "10.80.32.121" ], "result_count": 2, "sort_by": "displayName", "sort_ascending": false, "cursor": "2" }

Required Permissions:

read

Feature:

policy_common_ids

Additional Errors: