How do I find a client that accesses a malicious (external) IP address or a malicious URL ?
Release : 7.3.8.2
Edge Secure Web Gateway (formerly ProxySG) GUI doesn't has function to see client IP it is access for malicious URL.
These information will be contains in accesslog that Edge Secure Web Gateway created.
Open the Accesslog and search "malicious".
You can find the client IP(and also user name) and URL in the line.
If you have Management Center and Reporter it devices are analysis Edge Secure Web Gateways accesslogs and create result by graphical interface.
That result you will get below sample.
Please also see product detail in out documents.