select attackid, sum(count) as totalnum from $log where $filter and attackid is not null group by attackid having sum(count)>0 order by totalnum desc select attackname, count(*) as attack_count from $log where $filter and attackname is not null group by attackname order by attack_count descBasically I am looking to have the output show Attackname, attackID, and the total counts all correspondent with each other this is on a FAZVM64 v5.0-build0266 131108 (GA Patch 5)
AtiT
AtiT
attackname | attackid | totalnum | srcip | dstip | service sample 1234 5 x.x.x.x y.y.y.y http x.x.x.y y.y.y.y http x.x.x.z y.y.y.y http x.x.y.x y.y.y.y http x.x.y.z y.y.y.y http x.x.x.x y.y.y.y http sample2 4321 5 x.x.x.x y.y.y.y http
AtiT
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.