Describe the feature:
As an Elastic stack engineer, I would like to add all IP addresses that can be logically be grouped into a single exception instead of creating multiple exception per IP address / IP CIDR.
Describe a specific use case for the feature:
I do not want to create 5 rule exceptions where 1 can do the trick.
This would suffice:
I imagine this would change the current IS statement to IS ONE OF.
Describe the feature: As an Elastic stack engineer, I would like to add all IP addresses that can be logically be grouped into a single exception instead of creating multiple exception per IP address / IP CIDR.
Describe a specific use case for the feature: I do not want to create 5 rule exceptions where 1 can do the trick.
This would suffice:
I imagine this would change the current IS statement to IS ONE OF.