Hi, I was wondering if there is a way to switch the alert status on or off based on rule or condition? For instance, I have two different subnets where I’m monitoring network traffic. One is an open network and the other is a private/secured network.
I would like to set ‘is_alert’ to true if the src is subnet two and set it to false when its subnet one. The end goal is to only have certain alerts displayed in the alerts UI based on conditions. Is it possible? Best regards, Sanket
