Merge pull request #312471 from limwainstein/capture-filters

v-ccolin · web-flow · commit 1d5c214a0e92 · 2026-03-04T12:01:49.000Z
Capture filters
diff --git a/articles/defender-for-iot/organizations/TOC.yml b/articles/defender-for-iot/organizations/TOC.yml
@@ -387,7 +387,7 @@
         displayName: shell, login, cli, command-line, commands, users, user
         href: references-work-with-defender-for-iot-cli-commands.md
       - name: OT sensor CLI reference
-        displayName: shell, login, cli, command-line, commands, users, user
+        displayName: shell, login, cli, command-line, commands, users, user, capture filter, capture filters
         href: cli-ot-sensor.md
   - name: API reference
     items:
diff --git a/articles/defender-for-iot/organizations/cli-ot-sensor.md b/articles/defender-for-iot/organizations/cli-ot-sensor.md
@@ -1,6 +1,6 @@
 ---
 title: CLI command reference from OT network sensors- Microsoft Defender for IoT
-description: Learn about the CLI commands available from Microsoft Defender for IoT OT network sensors.
+description: Learn about the CLI commands available from Microsoft Defender for IoT OT network sensors, including capture filters.
 ms.date: 12/19/2023
 ms.topic: reference
 ---
@@ -9,6 +9,9 @@ ms.topic: reference
 
 This article lists the CLI commands available from Defender for IoT OT network sensors.
 
+> [!TIP]
+> To reduce alert fatigue and focus your network monitoring on high priority traffic, you may decide to filter the traffic that streams into Defender for IoT at the source. For more information, see [Traffic capture filters](#traffic-capture-filters).
+
 [!INCLUDE [caution do not use manual configurations](includes/caution-manual-configurations.md)]
 
 ## Prerequisites
diff --git a/articles/defender-for-iot/organizations/how-to-control-what-traffic-is-monitored.md b/articles/defender-for-iot/organizations/how-to-control-what-traffic-is-monitored.md
@@ -214,13 +214,11 @@ If you're working with dynamic networks, you need to handle IP addresses changes
 
 1. Select **Save** to save your changes.
 
-## Configure traffic filters (advanced)
+## Configure traffic capture filters (advanced)
 
 To reduce alert fatigue and focus your network monitoring on high priority traffic, you may decide to filter the traffic that streams into Defender for IoT at the source. Capture filters are configured via the OT sensor CLI, and allow you to block high-bandwidth traffic at the hardware layer, optimizing both appliance performance and resource usage.
 
-For more information, see:
-
-- [Defender for IoT CLI users and access](references-work-with-defender-for-iot-cli-commands.md)
+For more information, see [Traffic capture filters](cli-ot-sensor.md#traffic-capture-filters).
 
 ## Next steps
 
