Download PDF

Product Requirements

All ExtraHop systems

Thank you! We will contact you soon to ask how we can improve our documentation. We appreciate your feedback.

Was this topic helpful?

Yes No

Thank you for your feedback. Can we contact you to ask follow up questions?

How can we improve?

Need more help?

Ask the Community

Specify a network locality

Network localities enable you to classify traffic from IP addresses and CIDR blocks as internal or external to your network. You can also specify a name for each locality such as "DMZ" or "guest network" and filter by that name in devices and records.

Here are some important considerations about these settings:

Designating network localities affects detections and triggers as well as related features such as notifications, overview pages, and the Security Operations report.
If your ExtraHop deployment includes a console, we recommend that you transfer management of all connected sensors to the console.
For ExtraHop RevealX 360, these settings are synchronized across all connected sensors. You should not configure these settings on individual sensors.
For ExtraHop RevealX Enterprise, when you transfer management to a connected console, these settings are synchronized across all sensors. Otherwise, network locality settings must be configured on all sensors and consoles.
You must have full write privileges to change these settings.

Video:

See the related training: Configure Network Localities

Log in to the ExtraHop system through https://<extrahop-hostname-or-IP-address>.
Click the System Settings icon and then click Network Localities.
Click Create.
In the Network Locality Name field, type a unique name.
(Optional): In the Description field, type information about the network locality.
In the Network Locality Type section, select Internal or External, based on the classification you want to apply to the IP addresses and CIDR blocks.
In the IP Addresses and CIDR Blocks field, type the IP addresses and CIDR blocks you want to add to the locality. You must enter a unique range of addresses or blocks.
Click Save.

Next steps

From the Assets page, find devices by network locality.
Drill down on a metric by client, server, or IP address and select Internal or External as the Network Locality in the trifield filter.
Filter records by specifying one of the following filters:
- Network Locality Name
- Client Network Locality Name
- Server Network Locality Name
- Sender Network Locality Name
- Receiver Network Locality Name

Last modified 2024-07-12

Documentation

Products

Differentiation

Solutions

Security Operations

Cloud-Native Security

Application Analytics

Network Performance

Customers

Community

Partners

Support

Training

Resources

More Resources

Company

Events and Information

Specify a network locality