Actions277
- User Agents Actions
- Url Filters Actions
- Users Actions
- Traffic Reports Actions
- Traffic Reports Qps Active Agents
- Traffic Reports Qps Active Users
- Traffic Reports Qps Active Collections
- Traffic Reports Top Domains
- Traffic Reports Top Categories
- Traffic Reports Top Application Categories
- Traffic Reports Top Organizations
- Traffic Reports Top Networks
- Traffic Reports Top Agents
- Traffic Reports Top Users
- Traffic Reports Top Collections
- Traffic Reports Query Logs
- Traffic Reports Total Organizations Stats
- Traffic Reports Total Domain Stats
- Traffic Reports Total Category Stats
- Traffic Reports Total Organizations Requests
- Traffic Reports Total Domain Requests
- Traffic Reports Top Organizations Requests
- Traffic Reports Total Client Stats
- Traffic Reports Total Deployments
- Traffic Reports Total Roaming Clients
- Traffic Reports Total Applications Stats
- Traffic Reports Total Applications Organizations Stats
- Traffic Reports Total Applications Networks Stats
- Traffic Reports Total Applications Agents Stats
- Traffic Reports Total Applications Users Stats
- Traffic Reports Total Applications Collections Stats
- Traffic Reports Total Requests
- Traffic Reports Total Requests Geo
- Traffic Reports Total Requests Organizations
- Traffic Reports Total Requests Agents
- Traffic Reports Total Requests Users
- Traffic Reports Total Requests Collections
- Traffic Reports Total Threats
- Traffic Reports Total Threats Organizations
- Traffic Reports Total Threats Agents
- Traffic Reports Total Threats Users
- Traffic Reports Total Threats Collections
- Traffic Reports Total Categories
- Traffic Reports Total Categories Organizations
- Traffic Reports Total Categories Agents
- Traffic Reports Total Categories Users
- Traffic Reports Total Categories Collections
- Traffic Reports Total Domains
- Traffic Reports Total Domains Organizations
- Traffic Reports Total Domains Users
- Traffic Reports Total Domains Collections
- Traffic Reports Total Collections
- Traffic Reports Total Collections Organizations
- Traffic Reports Total Collections Agents
- Traffic Reports Total Collections Users
- Traffic Reports Qps
- Traffic Reports Qps Active Organizations
- Trials Actions
- User Agent Bulk Deletes Actions
- User Agent Bulk Updates Actions
- User Agent Cleanups Actions
- User Agent Csv Exports Actions
- Policies Actions
- Policies Add Blacklist Category
- Policies Remove Blacklist Category
- Policies Add Allowed Application
- Policies Remove Allowed Application
- Policies Add Blocked Application
- Policies Remove Blocked Application
- Policies Get Permissive Mode
- Policies Index
- Policies Create
- Policies All
- Policies Show
- Policies Update
- Policies Destroy
- Policies Application
- Policies Application Update
- Policies Add Blacklist Domain
- Policies Remove Blacklist Domain
- Policies Add Whitelist Domain
- Policies Remove Whitelist Domain
- Policies Bulk Actions Actions
- Policy Ips Actions
- Scheduled Policies Actions
- Scheduled Report Previews Actions
- Scheduled Reports Actions
- Networks Actions
- Networks Lookup
- Networks Show
- Networks Update
- Networks Destroy
- Networks Bulk Create
- Networks Bulk Create Status
- Networks Index
- Networks Create
- Networks All
- Networks Msp
- Networks Msp All
- Networks Bulk Update
- Networks Bulk Update Status
- Networks Bulk Destroy
- Networks Bulk Destroy Status
- Networks Generate Secret Key
- Networks Revoke Secret Key
- Networks Rotate Secret Key
- Mac Addresses Actions
- Metrics Actions
- Network Lan Ips Actions
- Network Subnets Actions
- Organizations Actions
- Organization Users Actions
- Distributors Actions
- Distributors Msps Cancel
- Distributors Msps Reactivate
- Distributors Organizations Index
- Distributors Organizations Create
- Distributors Organizations Show
- Distributors Organizations Update
- Distributors Organizations Cancel
- Distributors Organizations Reactivate
- Distributors Organizations Add Sku
- Distributors Organizations Remove Sku
- Distributors Users Index
- Distributors Users Create
- Distributors Users Show
- Distributors Users Add Membership
- Distributors Users Update Membership
- Distributors Users Remove Membership
- Distributors Users Send Reset Password Email
- Distributors Users Reset Password Url
- Distributors Reports Usage By Organization
- Distributors Reports Usage By Sku
- Distributors Reports Covered Users Summary By Organization
- Distributors Distributors Update
- Distributors Msps Index
- Distributors Msps Create
- Distributors Msps Show
- Distributors Msps Update
- Domain Notes Actions
- Domains Actions
- Enterprise Connections Actions
- Invoices Actions
- IP Addresses Actions
- Allowed Urls Actions
- Api Key Actions
- Application Categories Actions
- Applications Actions
- Authentication Actions
- Authentication Sync Tool Actions
- Billings Actions
- Blocked Urls Actions
- Block Pages Actions
- Categories Actions
- Collection Users Actions
- Agent Local User Actions
- Agent Local User Bulk Deletes Actions
Overview
This node allows querying traffic report logs from the AvantGuard DNSFilter service. It is designed to retrieve detailed network traffic data filtered by various criteria such as user agents, applications, domains, IP addresses, and time ranges. This node is useful for network administrators and security analysts who want to monitor, analyze, or audit DNS traffic and related security events within their organization.
Typical use cases include:
- Fetching logs of allowed or blocked DNS queries over a specific period.
- Filtering traffic reports by user agents, networks, or proxies.
- Generating security threat reports based on DNS query results.
- Auditing domain access patterns or application usage in the network.
Properties
| Name | Meaning |
|---|---|
| Additional Query Parameters | Optional parameters to refine the traffic report query. These include: - Agent Id (single UUID) - Agent Ids (comma-separated UUIDs) - Application Category Ids - Application Ids - Category Ids - Collection Id(s) - Domain prefix filter - FQDN substring filter - From (UTC datetime lower limit) - To (UTC datetime upper limit) - MAC Addresses - NAT IPs (integer list 101-106) - Network Id(s) - Organization Id (defaults to user org) - Page (pagination object with page number and size) - Private IP or IP range (from/to) - Question Type (DNS query type) - Result (all, allowed, blocked) - Security Report (boolean to include threats) - Source (networks, agents, proxies, or all) - User Id(s) |
The "Result" property has three options:
- All
- Allowed
- Blocked
The "Source" property options are:
- All
- Networks
- Agents
- Proxies
Output
The node outputs JSON data representing the queried traffic report logs. The structure typically includes an array of log entries, each containing details about DNS queries such as timestamps, source identifiers, domain names, query types, results (allowed/blocked), and any associated security threat information.
No binary data output is indicated.
Dependencies
- Requires an API key credential for authenticating with the AvantGuard DNSFilter API.
- The node uses the base URL
https://api.dnsfilter.comfor requests. - Proper configuration of the API authentication credential in n8n is necessary.
Troubleshooting
- Invalid Date Format: If the "From" or "To" date properties are not in the expected ISO 8601 format (
YYYY-MM-DDThh:mm:ssor with trailingZ), the API may default to current UTC datetime minus one day or current datetime respectively, which might lead to unexpected results. - Pagination Limits: The page size defaults to 10 and has a maximum of 100. Requests exceeding this may be rejected or truncated.
- Empty Results: If filters are too restrictive or incorrect (e.g., invalid agent IDs or domain filters), the query may return no data.
- Authentication Errors: Ensure the API key credential is valid and has sufficient permissions.
- API Rate Limits: Excessive querying may trigger rate limits; handle errors accordingly.