Define the query to match traffic hitting the rules designed
to find policy gaps and potential attacks. You can create a single
report for traffic that matches any of the rules using the
or
operator,
or create individual reports to monitor each rule. In the
Query Builder
,
specify the name of each rule you want to include in the report.
This example uses the six blocking rules and uses the
Or
operator
to include information about traffic that matches any of the rules: