Get the details of an automatically reported IP addresses by the user.

GET {{baseUrl}}/v1/denylist/reported/ip/:ip_address

What

Obtain the details of an IPv4 or IPv6 addresses that have been automatically reported by the user. A user can report automatically an IP address with the asynchronous API. The reported IP address differs from the ones managed with the endpoint /v1/denylist/cidr. As a rule of thumb, the reported IP addresses are the ones submitted by devices like honeypots, firewalls, log engines, etc. The denylisted IP addresses are the ones submitted manually by the user from files or indidual items.

Parameters

The endpoint accepts the following parameters in the path: - ip_address: (Mandatory) The public IPv4 or IPv6 addresses to be queried.

Result

The result is a JSON object with the following fields: - self: the URI to individual reported IP information. - last_report: Unix timestamp in milliseconds when the IP address was last reported. - expiry: Unix timestamp in milliseconds when the IP address will expire and be removed. - total_reports: Total number of reports for the IP address. - protocol: IP protocol version of the IP address. Values can be IPV4 or IPV6. - dataset: Name of the dataset where the IP address was reported. Must be a value from the /v1/dataset/ip endpoint. - tags: A list of strings with the tags associated to the IP address at the origin device. It helps to classify the origin of the report.

Errors

  • a 422 Unprocessable Entity error if the IP address is malformed.

It will also return the API Global errors described in the API description.

HEADERS

KeyDatatypeRequiredDescription
Acceptstring

RESPONSES

status: OK

{"self":"dolore magna dolor","last_report":-35803488,"total_reports":75210089,"dataset":"sunt nisi in","expiry":56945150,"protocol":"IPV4","tags":["EMQJO-LJ0HBCOHSQL-HHY-H","ONZK3E64Q-R77LG9-A6YL9H30RV-K3Z53HHC-S68"]}