I use a lookup file with a mix of ranges of IP and unique IP to count events of login
My file is like this
I configure my lookup file with CIDR option but the result of search only extract the
events of ip integrated in ranges of ip.
I woulld like to extract all the results
how can I solved this with only one lookup file ?
You need all addresses in your lookup to be in CIDR notation, that means your lookup should look like this.