Good day everyone
I have questions in regard to reports from on-prem device.
I generate a reports that contain the alert name, description, number of events and destination IP. As I sum up the number of events the result is only a 5k plus but when I generate the reports without the destination IP and sum up all the number of events the result is 400k plus. Can anyone explain this? I was having difficulty in understanding this part.
Thank you.
#On-PremisesWAF(formerlySecuresphere)------------------------------
Clydie
------------------------------