listSummaries.RdSummary (All)
listSummaries( from, to, domains = NULL, urls = NULL, categories = NULL, policycategories = NULL, ip = NULL, ports = NULL, identityids = NULL, identitytypes = NULL, applicationid = NULL, verdict = NULL, ruleid = NULL, filename = NULL, securityoverridden = NULL, bundleid = NULL, threats = NULL, threattypes = NULL, ampdisposition = NULL, antivirusthreats = NULL, offset = 0, limit = 100, organizationId = Sys.getenv("umbrellaOrganizationId") )
| from | timestamp to filter from (or relative, e.g. -1days) |
|---|---|
| to | timestamp to filter to (or relative, e.g. now) |
| domains | domain filter, comma delimited |
| urls | url filter, comma delimited |
| categories | categories filter, comma delimited ints |
| policycategories | policy-triggering categories filter, comma delimited ints |
| ip | ip filter |
| ports | 81 - port filter, comma delimited ports and ranges |
| identityids | identity filter, comma delimited |
| identitytypes | identity type filter, comma delimited. |
| applicationid | application id filter |
| verdict | verdict filter, comma delimited |
| ruleid | firewall rule ID |
| filename | filename.exe - file name filter, supports wild-carding with * |
| securityoverridden | whether security was overridden for this request |
| bundleid | proxy bundle ID |
| threats | threat names filter, comma delimited |
| threattypes | threat types filter, comma delimited |
| ampdisposition | AMP disposition filter, comma delimited |
| antivirusthreats | threat names caught by antivirus, comma delimited |
| offset | offset |
| limit | limit |
| organizationId | the organization id |