IP group inclusionsΒΆ

To import a list of IP group inclusion definitions, execute the following from the scrut_util interactive shell (SCRUTINIZER> prompt):

import ipgroups <PATH/FILE> [reset]

Direct shell/script syntax

scrut_util --import ipgroups --file <PATH/FILE> [--reset]

File requirements

The file to be imported must be a UTF8-encoded CSV file.

Using the sample file /home/plixer/scrutinizer/files/ipgroup_import.csv as a template for IP group import files is recommended.

Definition format

Each inclusion definition should be in a single line, following the format:

'IP GROUP NAME',INCLUSION_RULE

Additional notes

  • Rules can defined as any of the following:

    • Subnets

    • Single IP address

    • IP address ranges

    • Wildcard masks

    • Child groups (must be defined first)

  • Passing the reset option will delete all existing IP group definitions before the import operation.

  • If the reset option is not used, IP addresses covered by an imported inclusion rule will be added to the specified IP group if it already exists.

  • Because each line can contain only one rule, an IP group containing multiple single IP addresses will need to be defined using a separate definition/line for each address. Multiple rules in separate lines for the same IP group are also supported.

  • Each import operation supports up to 100,000 IP group inclusion definitions.

Definition examples

Rule types:

'Subnet Group',10.0.0.0/8
'Single IP Group',10.1.1.1
'IP Range Group',10.0.0.1-10.0.0.42
'Wildcard Mask Group',10.0.0.1/0.255.255.0
'Parent/Child Group', 'My Subnet'

Multiple single addresses:

'Sales',10.1.1.1
'Sales',192.168.3.4
'Sales',10.3.1.2

Multiple non-single-IP rules:

'New IP Group',10.0.0.1-10.0.0.42
'New IP Group','My Subnet'