■
User:The username associated with the machine when the threat was detected. Clicking this
will display a search for suspicious activity by this machine/user combination.
■
Count: The number of times this particular IP/username combination has been detected as
a threat.
■
Details: The name or names of any detected threats. Clicking the name of a threat will open
the webpage with the corresponding Sophos threat analysis.
To block or unblock all listed machines, use the Block All or Unblock All buttons at the bottom
of the page.
Related tasks
Searching Recent Activity on page 181
Additional Policies on page 89
5.1.26 Policy & Content: Web Application Usage
By default, a chart and data table of the top web applications allowed today since midnight.The
data table columns include Rank, Application & Feature, Hits (which displays a count of site
visits) and Bytes (which displays the total bytes of uploads and downloads).
You can sort the results according to hits or the number of bytes consumed.The Chart parameter
allows you to sort either by Top Applications or Top Features:
■
Top Applications shows a chart of the most used applications.The table below summarizes
each application as well as showing a breakdown of each feature.
■
Top Features shows a chart of the most used features. The table below lists each feature
with no grouping for their application.
The Status parameter allows you to filter results by Allowed, Blocked and Blocked (Application).
See Modifying Reports on page 167 for a description of the other parameters.
5.2 Modifying Reports
The reports about individual web appliances are available on a Management Appliance only.
On the right side of each report page is a Report Parameters sidebar with options for specifying
the time period covered by the report and, sometimes, the kind of data that is displayed in the
report. The options vary according to the type of report.
1. Set the desired parameters:
a) Select an option for the Period that the report will cover.
■
Today: Only activity recorded since midnight for the current day is searched.
■
Yesterday: Only activity recorded during the previous calendar day (midnight to midnight)
is searched.
Sophos Web Appliance | Reports | 167
To Next Page
Loading...
Need help?
General
