Hello, I'm new to elasticsearch, and I installed elasticsearch here at work with kibana and netflow.
I would like to create a filter that would give me the following information: all destination ports originating from blocks 172.250.0/16 and 172.18.100.0/23 going out to the internet, disregarding internal blocks. Could anyone help me as I really have no idea how to do this?
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.