Specify the locality for IP addresses
By adding a CIDR block to the Network Localities page, you can classify traffic from these IP addresses as internal or external to your network.
Here are some important considerations:
- You must have full-write privileges to change the locality of IP addresses.
- You must enter a unique range of IP addresses.
- If you have an ExtraHop Command appliance, you must configure these settings in the Command appliance and in all connected Discover appliances.
- Log in to the ExtraHop system through https://<extrahop-hostname-or-IP-address>.
-
Click the System Settings icon
and then click Network
Localities.
- Click Add a CIDR Block.
- In the Network field, type a single IP address or CIDR block.
- Select Internal or External, based on which classification you want to apply to the CIDR block.
- (Optional): In the Description field, type information about why you are configuring the locality of this CIDR block.
- Click Save.
- To add more entries, click Add CIDR.
Next steps
Verify that the ExtraHop system no longer classifies an IP address as an external or internal by completing the following steps:- Click Assets at the top of the page and then click Protocols.
- Click the device count for TCP . A protocol page appears that displays metrics for every device on your network with TCP activity.
- In the TCP Connections section, look for changes in the number of External Accepted and External Connected metrics. For example, if you classified a large CIDR block for a remote office as Internal, then the number of external connections should be lower.
Thank you for your feedback. Can we contact you to ask follow up questions?