Filter Noisy Domains in Reporting
Matthew
I'd like the ability to consider negatively filtering a site from the view. My thought is that there are various domains that dominate the statistics like RMM tools, Office365, and other things that are chatty. It's 'good to have' these stats but they bury some of the traffic that's not client/server behind the scenes. If I could mute out my RMM tool I might see more useful data with it being the top #1 talking domain in the org.
On the flip side it may be useful to mark a site for extra auditing. In some cases I want to know if people are going to a bad site but I don't want to interfere. I simply want to be alerted or gather the statistics passively. In a competing product there's an option to whitelist something and then choose to log it if the alert hits. Useful for investigations.
Cory Scheuer
here here, would love this as well, as i have a heartbeat set up, once a 1min, is causing 60% of my traffic
Steve Staden
Merged in a post:
Exclude sites from reporting
Christopher
When looking at traffic reports, our MSP tools take up many of the top reporting spots. Can you please add the ability to exclude sites (such as anti-virus or windows updates) to be hidden or removed from reporting charts so clients can see actual activity of their users and not the activity of our tools?
CJ Combs - NOC
THIS IS CRITICAL.. In 24 hours, our RMM and Remote Access tool, generates over 200,000 requests essentially making reporting unusable. The issue for us is our ConnectWise Automate tool constantly checking in causing MASS amounts of requests showing up in reporting giving a false perception to the client and impacting the ratio of true good to bad requests..
DP
When using the relay my internal domain name is being logged as well. We had over a billion hits on my internal domain last month which overwhelms the reporting views. Why are internal domains even being logged in the first place?
Steve Staden
Merged in a post:
Exclude URLs From Logs
Nick
Is there anyway to exclude specific URLs from being logged? I don't need to see queries from my Antivirus clients or updates.microsoft.com.
Paul
This would be really nice. We use Carbon Black, and our logs are littered with the constant communications between each client and Carbon Black's servers. Makes going through a timeline take a very long time.
Mikey @DNSFilter
Merged in a post:
Report Filtering Policy
John
Reporting is one of the great aspects of this tool and for several of our customers it is the selling point that tips the scales. We can talk security until we are blue in the face and they don't hear you. Tell them they can review data points on internet usage and they are all in.
However, there is a missing piece to the reports and that is a Report Filtering Policy. In the simplest manner it could be sites and categories to exclude from the reports. A great example of the need for this we have a customer where 45% of their requests are for our services. These are not things the users control but it is greatly inflating their numbers.
As an MSP it would be nice to set this on a global level as all our customers will have these requests but there could be a need at a customer level as well.
Mikey @DNSFilter
Merged in a post:
Allow for excluding categories from reporting pic charts
Adam
Most roaming clients have majority of traffic going to microsoft 365 or google services. This skews the data that one might want to view as if I want to show requests made by a romaing client that were not business related (in the event the romaing client has been abusing internet policies for example), would be super helpful if we had a filter for what categories we can include and exclude in reporting
Mikey @DNSFilter
Merged in a post:
Reporting showing "Proxy & Filter Avoidance" as Security Threats
Tad
It would be nice to have a separate section/category for Proxy & Filter Avoidance in the Data Explorer reporting. A Threat should be a URL flagged as Malware or Phishing, not “Proxy & Filter Avoidance” URL’s
Mikey @DNSFilter
Merged in a post:
MSP - Remove MSP/AV/RMM domains from reporting
Ed
Need the ability to ignore certain domains from reporting. we are finding that our tools are usually top 5 domains when we run usage reports.
Load More
→