How we can discover IoT Devices used within a network in Firewall Logs?.
One of the way of discovering IOT devices is through mac address, but mac address is not available in log file. I have to work around with header(User-Agent, Source IP , Client IP and Request Url) to uniquely identify an IoT device.
I am getting logs from BlueCoat Proxysg. Fields available in firewall logs are https://origin-symwisedownload.symantec.com/resources/webguides/cacheflow/3x/3_4/webguide/Content/CPL/Access-Log-Fields.htm
I want to detect all kind of IOT Devices used in my networks.
