I am trying to lookup IPv4 AND IPv6 Subnets using a lookup file
This works fine for IPv4 setting match_type = cidr(ip)
This does not seem to work for IPv6 addresses and ranges
In the search IPv6 seems to be also not that well supported except where cidrmatch("2001:620:0:1002::9e/16",src_ip) seems to work
Any help is appreciated.
Managing the IPv6 ranges using Eventtypes or macros using cidrmatch is not really feasible, because we have a whole lot of them
Greetings
Mathias
↧