Skip to main content

Filter DNS log entries

Abstract

DNS log entries can be filtered by checking their match against specific criteria.

DNS log entries can be filtered by checking their match against specific criteria. The criteria can be set to match against domain name and domain IP.

Note

Both the domain name and domain IP filters can be used together.

Filter by Domain Name

To filter the log entries by domain name, follow the steps below:

  2. Navigate to API & Logs > DNS Log.

  3. Set the date-range picker to the time period of interest: Last 24 hours, Last 7 days, Last 30 days, or a specific date interval. Click Apply.

    If there were any logs for the chosen time interval, the time chart will display the day/hour and the number of allowed, blocked, and failed DNS requests made as a stacked bar chart.

    If there were any logs for the chosen time interval, a table of log entries will be displayed below the chart.

  4. Click icon_filter.png.

    The drop-down will have two options: Registered Domain (ARD) and Domain IP. If in the Resolved Subdomains view (Refer View DNS log entries for subdomains), the drop-down will have two options: Full Domain Name and Domain IP.

  5. Click Registered Domain (ARD) from the drop-down or Full Domain Name if in the Resolved Subdomains view

    Two criteria options will be shown: equals and starts with

  6. Filter by domain name by choosing one of the options and providing a domain name value. Click Apply.

  7. The set filter is displayed, and the log entries that match filter values are shown in the table.

  8. Click X next to the displayed filter to reset it.

Filter by Domain IP

To filter the log entries by domain name, follow the steps below:

  2. Navigate to API & Logs > DNS Log.

  3. Set the date-range picker to the time period of interest: Last 24 hours, Last 7 days, Last 30 days, or a specific date interval. Click Apply.

    If there were any logs for the chosen time interval, the time chart will display the day/hour and the number of DNS requests made.

    If there were any logs for the chosen time interval, a table of log entries will be displayed below the chart.

  4. Click icon_filter.png.

    The drop-down will have two options: Registered Domain (ARD) and Domain IP. If in the Resolved Subdomains view (Refer View DNS log entries for subdomains), the drop-down will have two options: Full Domain Name and Domain IP.

  5. Click Domain IP from the drop-down

    A Domain IP equals text box will appear

  6. Provide the full IPv4 or IPv6 IP address in the text box and click Apply.

  7. The set filter is displayed, and the log entries that match filter values are shown in the table.

  8. Click X next to the displayed filter to reset it.

In this section:
See also: