AvantGuard - DNSFilter

Actions277

User Agents Actions
- User Agents Uninstall Pin
- User Agents Dequeue Uninstall
- User Agents Csv
- User Agents Index
- User Agents All
- User Agents Counts
- User Agents Show
- User Agents Update
- User Agents Destroy
- User Agents Tags
Url Filters Actions
- Url Filters Test
Users Actions
- Users Index
- Users All
- Users Show
Traffic Reports Actions
- Traffic Reports Qps Active Agents
- Traffic Reports Qps Active Users
- Traffic Reports Qps Active Collections
- Traffic Reports Top Domains
- Traffic Reports Top Categories
- Traffic Reports Top Application Categories
- Traffic Reports Top Organizations
- Traffic Reports Top Networks
- Traffic Reports Top Agents
- Traffic Reports Top Users
- Traffic Reports Top Collections
- Traffic Reports Query Logs
- Traffic Reports Total Organizations Stats
- Traffic Reports Total Domain Stats
- Traffic Reports Total Category Stats
- Traffic Reports Total Organizations Requests
- Traffic Reports Total Domain Requests
- Traffic Reports Top Organizations Requests
- Traffic Reports Total Client Stats
- Traffic Reports Total Deployments
- Traffic Reports Total Roaming Clients
- Traffic Reports Total Applications Stats
- Traffic Reports Total Applications Organizations Stats
- Traffic Reports Total Applications Networks Stats
- Traffic Reports Total Applications Agents Stats
- Traffic Reports Total Applications Users Stats
- Traffic Reports Total Applications Collections Stats
- Traffic Reports Total Requests
- Traffic Reports Total Requests Geo
- Traffic Reports Total Requests Organizations
- Traffic Reports Total Requests Agents
- Traffic Reports Total Requests Users
- Traffic Reports Total Requests Collections
- Traffic Reports Total Threats
- Traffic Reports Total Threats Organizations
- Traffic Reports Total Threats Agents
- Traffic Reports Total Threats Users
- Traffic Reports Total Threats Collections
- Traffic Reports Total Categories
- Traffic Reports Total Categories Organizations
- Traffic Reports Total Categories Agents
- Traffic Reports Total Categories Users
- Traffic Reports Total Categories Collections
- Traffic Reports Total Domains
- Traffic Reports Total Domains Organizations
- Traffic Reports Total Domains Users
- Traffic Reports Total Domains Collections
- Traffic Reports Total Collections
- Traffic Reports Total Collections Organizations
- Traffic Reports Total Collections Agents
- Traffic Reports Total Collections Users
- Traffic Reports Qps
- Traffic Reports Qps Active Organizations
Trials Actions
- Trials Create
User Agent Bulk Deletes Actions
- User Agent Bulk Deletes Create
- User Agent Bulk Deletes Show
- User Agent Bulk Deletes Counts
User Agent Bulk Updates Actions
- User Agent Bulk Updates Create
- User Agent Bulk Updates Show
- User Agent Bulk Updates Has Mixed
- User Agent Bulk Updates Counts
User Agent Cleanups Actions
- User Agent Cleanups Create
- User Agent Cleanups Show
- User Agent Cleanups Update
User Agent Csv Exports Actions
- User Agent Csv Exports Create
- User Agent Csv Exports Show
Policies Actions
- Policies Add Blacklist Category
- Policies Remove Blacklist Category
- Policies Add Allowed Application
- Policies Remove Allowed Application
- Policies Add Blocked Application
- Policies Remove Blocked Application
- Policies Get Permissive Mode
- Policies Index
- Policies Create
- Policies All
- Policies Show
- Policies Update
- Policies Destroy
- Policies Application
- Policies Application Update
- Policies Add Blacklist Domain
- Policies Remove Blacklist Domain
- Policies Add Whitelist Domain
- Policies Remove Whitelist Domain
Policies Bulk Actions Actions
- Policies Bulk Actions Add Allowlist Domains
- Policies Bulk Actions Remove Allowlist Domains
- Policies Bulk Actions Add Blocklist Domains
- Policies Bulk Actions Remove Blocklist Domains
Policy Ips Actions
- Policy Ips Show
Scheduled Policies Actions
- Scheduled Policies Index
- Scheduled Policies Create
- Scheduled Policies All
- Scheduled Policies Show
- Scheduled Policies Update
- Scheduled Policies Destroy
Scheduled Report Previews Actions
- Scheduled Report Previews Show
- Scheduled Report Previews Create
Scheduled Reports Actions
- Scheduled Reports Index
- Scheduled Reports Create
- Scheduled Reports Show
- Scheduled Reports Update
- Scheduled Reports Destroy
Networks Actions
- Networks Lookup
- Networks Show
- Networks Update
- Networks Destroy
- Networks Bulk Create
- Networks Bulk Create Status
- Networks Index
- Networks Create
- Networks All
- Networks Msp
- Networks Msp All
- Networks Bulk Update
- Networks Bulk Update Status
- Networks Bulk Destroy
- Networks Bulk Destroy Status
- Networks Generate Secret Key
- Networks Revoke Secret Key
- Networks Rotate Secret Key
Mac Addresses Actions
- Mac Addresses Show
- Mac Addresses Update
- Mac Addresses Destroy
- Mac Addresses Index
- Mac Addresses Create
- Mac Addresses All
Metrics Actions
- Metrics Organization Usage
- Metrics Organization Usage Detailed
Network Lan Ips Actions
- Network Lan Ips Index
- Network Lan Ips Show
- Network Lan Ips Update
Network Subnets Actions
- Network Subnets All
- Network Subnets Index
- Network Subnets Create
- Network Subnets Show
- Network Subnets Update
- Network Subnets Destroy
Organizations Actions
- Organizations Index
- Organizations Create
- Organizations All
- Organizations Show
- Organizations Update
- Organizations Destroy
- Organizations Settings
- Organizations Bulk Update
- Organizations Cancel
- Organizations Promote To Msp
Organization Users Actions
- Organization Users Index
- Organization Users Create
- Organization Users Show
- Organization Users Update
- Organization Users Destroy
- Organization Users Resend Invite
Distributors Actions
- Distributors Msps Cancel
- Distributors Msps Reactivate
- Distributors Organizations Index
- Distributors Organizations Create
- Distributors Organizations Show
- Distributors Organizations Update
- Distributors Organizations Cancel
- Distributors Organizations Reactivate
- Distributors Organizations Add Sku
- Distributors Organizations Remove Sku
- Distributors Users Index
- Distributors Users Create
- Distributors Users Show
- Distributors Users Add Membership
- Distributors Users Update Membership
- Distributors Users Remove Membership
- Distributors Users Send Reset Password Email
- Distributors Users Reset Password Url
- Distributors Reports Usage By Organization
- Distributors Reports Usage By Sku
- Distributors Reports Covered Users Summary By Organization
- Distributors Distributors Update
- Distributors Msps Index
- Distributors Msps Create
- Distributors Msps Show
- Distributors Msps Update
Domain Notes Actions
- Domain Notes Show
- Domain Notes Update
- Domain Notes Batch Update
- Domain Notes Destroy
- Domain Notes Batch Destroy
Domains Actions
- Domains User Lookup
- Domains Bulk Lookup
- Domains Suggest Categories
- Domains Suggest Threat
Enterprise Connections Actions
- Enterprise Connections Index
- Enterprise Connections Create
- Enterprise Connections Show
- Enterprise Connections Update
- Enterprise Connections Destroy
Invoices Actions
- Invoices Index
- Invoices Show
IP Addresses Actions
- IP Addresses Index
- IP Addresses Create
- IP Addresses All
- IP Addresses Show
- IP Addresses Update
- IP Addresses Destroy
- IP Addresses Verify
Allowed Urls Actions
- Allowed Urls Destroy
- Allowed Urls Bulk Update
- Allowed Urls Bulk Delete
- Allowed Urls Has Mixed
- Allowed Urls Count
- Allowed Urls Csv
- Allowed Urls Index
- Allowed Urls Create
- Allowed Urls Update
Api Key Actions
- Api Key Create
- Api Key Index
- Api Key Show
- Api Key Destroy
- Api Key Revoke
Application Categories Actions
- Application Categories Index
- Application Categories Show
Applications Actions
- Applications Index
- Applications All
- Applications Show
Authentication Actions
- Authentication Create
Authentication Sync Tool Actions
- Authentication Sync Tool Index
- Authentication Sync Tool Create
- Authentication Sync Tool All
- Authentication Sync Tool Show
- Authentication Sync Tool Update
- Authentication Sync Tool Destroy
Billings Actions
- Billings Show
- Billings Create
- Billings Address Show
- Billings Address Update
Blocked Urls Actions
- Blocked Urls Index
- Blocked Urls Create
- Blocked Urls Update
- Blocked Urls Destroy
- Blocked Urls Bulk Update
- Blocked Urls Bulk Delete
- Blocked Urls Has Mixed
- Blocked Urls Count
- Blocked Urls Csv
Block Pages Actions
- Block Pages Index
- Block Pages Create
- Block Pages All
- Block Pages Show
- Block Pages Update
- Block Pages Destroy
Categories Actions
- Categories Index
- Categories All
- Categories Show
Collection Users Actions
- Collection Users Index
- Collection Users Create
- Collection Users Show
- Collection Users Destroy
Agent Local User Actions
- Agent Local User Index
- Agent Local User All
- Agent Local User Show
- Agent Local User Update
- Agent Local User Destroy
Agent Local User Bulk Deletes Actions
- Agent Local User Bulk Deletes Create
- Agent Local User Bulk Deletes Show
- Agent Local User Bulk Deletes Counts

Overview

The "Traffic Reports Top Collections" operation within the "Traffic Reports" resource is designed to retrieve summarized traffic report data focused on top collections. This node allows users to query detailed network traffic analytics filtered by various parameters such as user agents, applications, networks, and time ranges. It is beneficial for network administrators or security analysts who want to monitor and analyze traffic patterns, detect threats, or generate reports on allowed or blocked traffic.

Practical examples include:

Generating a report of the top collections of traffic blocked by security policies within a specific date range.
Filtering traffic reports by specific user agents or MAC addresses to investigate suspicious activity.
Analyzing traffic sources from particular networks or organizations to optimize network performance or security.

Properties

Name	Meaning
Additional Query Parameters	Optional filters and parameters to customize the traffic report query. Includes: - Agent Ids: Comma-separated list of user agent UUIDs (default all). - Agent Types: Comma-separated list of user agent types (default all). - Application Ids: Comma-separated list of application IDs (default all). - Collection Ids: Comma-separated list of collection IDs (default all). - From: UTC lower limit datetime for the report (format YYYY-MM-DDThh:mm:ss or with Z). Defaults to current UTC minus 1 day. - Mac Addresses: Comma-separated list of MAC addresses without colons (default all). - Msp Id: MSP ID number. - Name: Filter local users whose name contains this value. - Nat Ips: Comma-separated list of NAT IPs (valid integers 101 to 106). - Network Ids: Comma-separated list of network IDs (default all). - Organization Ids: Comma-separated list of organization IDs (default user org ID). - Page: JSON object specifying page number (default 1) and size (default 10, max 100). - Private Ip: Private LAN IP. - Private Ip From: Lower limit of private LAN IP range. - Private Ip To: Upper limit of private LAN IP range. - Security Report: Boolean to filter threat reports (true/false). If empty, includes both threats and non-threats. - Source: Traffic source filter with options: All, Networks, Agents, Proxies (default All). - To: UTC upper limit datetime for the report (format YYYY-MM-DDThh:mm:ss or with Z). Defaults to current UTC. - Type: Type of report with options: All, Allowed, Blocked (default All). - User Ids: Comma-separated list of local user IDs (default all).

Name

Meaning

Additional Query Parameters

Optional filters and parameters to customize the traffic report query. Includes:
- Agent Ids: Comma-separated list of user agent UUIDs (default all).
- Agent Types: Comma-separated list of user agent types (default all).
- Application Ids: Comma-separated list of application IDs (default all).
- Collection Ids: Comma-separated list of collection IDs (default all).
- From: UTC lower limit datetime for the report (format YYYY-MM-DDThh:mm:ss or with Z). Defaults to current UTC minus 1 day.
- Mac Addresses: Comma-separated list of MAC addresses without colons (default all).
- Msp Id: MSP ID number.
- Name: Filter local users whose name contains this value.
- Nat Ips: Comma-separated list of NAT IPs (valid integers 101 to 106).
- Network Ids: Comma-separated list of network IDs (default all).
- Organization Ids: Comma-separated list of organization IDs (default user org ID).
- Page: JSON object specifying page number (default 1) and size (default 10, max 100).
- Private Ip: Private LAN IP.
- Private Ip From: Lower limit of private LAN IP range.
- Private Ip To: Upper limit of private LAN IP range.
- Security Report: Boolean to filter threat reports (true/false). If empty, includes both threats and non-threats.
- Source: Traffic source filter with options: All, Networks, Agents, Proxies (default All).
- To: UTC upper limit datetime for the report (format YYYY-MM-DDThh:mm:ss or with Z). Defaults to current UTC.
- Type: Type of report with options: All, Allowed, Blocked (default All).
- User Ids: Comma-separated list of local user IDs (default all).

Output

The node outputs JSON data representing the top collections in the traffic reports based on the applied filters. The structure typically includes aggregated metrics and details about collections such as counts, identifiers, and possibly metadata related to traffic volume or security events.

If binary data output is supported, it would represent downloadable report files or attachments, but this is not indicated in the provided code or properties.

Dependencies

Requires an API key credential for authenticating requests to the external traffic reporting service.
The node uses a base URL endpoint (not explicitly shown here) to send HTTP requests with query parameters constructed from the input properties.
Proper configuration of the API authentication token or key in n8n credentials is necessary.

Troubleshooting

Common Issues:
- Incorrect date/time format in "From" or "To" fields may cause the API to default to fallback dates or return errors.
- Providing invalid or malformed comma-separated lists (e.g., agent IDs, MAC addresses) can lead to no results or API errors.
- Exceeding maximum page size (over 100) might be rejected by the API.
- Missing or invalid API authentication will result in authorization errors.
Error Messages:
- Authorization errors indicating missing or invalid API keys require checking credential setup.
- Validation errors related to query parameters suggest reviewing the formatting and allowed values.
- Network or timeout errors indicate connectivity issues with the external API endpoint.

Links and References

Refer to the official API documentation of the traffic reporting service for detailed parameter descriptions and response formats.
n8n documentation on how to configure API key credentials and use HTTP request nodes for similar integrations.

AvantGuard - DNSFilterInstall