Views:
The SMS has the following Security report templates:
  • All attacks
  • All destinations
  • All sources
  • Specific attack
  • Specific country
  • Specific destination
  • Specific source
  • Specific user
  • Top attacks
  • Top attacks by country
  • Top destinations
  • Top IPS VLANs with attacks
  • Top sources
  • Top users
The SMS has the following Application report templates:
  • All applications
  • All destinations
  • All P2P peers
  • All sources
  • Specific applications
  • Specific country
  • Specific destination
  • Specific P2P peers
  • Specific source
  • Specific user
  • Top applications
  • Top destinations
  • Top P2P peers
  • Top sources
  • Top users
The following table lists the criteria panels that are available for those report templates.
Use this criteria panel... To filter the report by:
Filter Criteria Details including filter name and number, category, profile, severity, Reputation Type, and action.
Attack filters are assigned a severity level which indicates the importance of attack traffic. Severities are color-coded to help you quickly identify and respond to attack traffic.
The SMS uses the following severity levels:
  • Critical — Indicates critical attacks that must be looked at immediately.
  • Major — Indicates major attacks that must be looked at soon.
  • Minor — Indicates minor attacks that should be looked at as time permits.
  • Low — Indicates traffic that is probably normal, but may have security implications.
Filter Taxonomy Criteria Classification, protocol, and/or platform. Click the Lookup icon to quickly search the list.
Network Criteria Addresses and Ports, VLAN, country, and/or client IP.
User Info Criteria Login IDs of source/destination users and user groups, and the IP addresses of the source/destination domains and machines.
Device or segment Segment, device or stack.
  • Click Add to add a device or segment.
  • Click Delete to remove an existing device or segment.