GuidesChangelog
ProductDeveloperPartnerPersonal
ProductDeveloperPartnerPersonal

Review Security Events

Centralized Reports – Security Summary Report

The Security Summary report includes an overview that shows traffic and security events for all of your trials during the selected time period. When you search for a specific​ trial, this overview information updates so that it is specific to that trial.

Similar to the Overview report, the primary goal of the Security Summary report is to allow you to establish a benchmark for what you would expect to see from your trial base. This lets you identify problems, such as botnet traffic, which would indicate a potential infection.

  1. Navigate to Centralized Reports > Security Summary.
1525
  1. Review information.
881

There are several sortable columns of security information you can use:

  • Malware Prevented—The number of DNS queries blocked because the domains are believed to be distributing malware.
  • Botnet Contained—The number of DNS queries blocked because the domains are believed to be command and control servers used by infected machines to join a botnet. Botnet traffic may indicate that there are infected machines on the trial customer's network.
  • Total Blocked—The total number of attacks blocked, including blocks by category settings, destination lists, and other categories.
  • All Security Requests —The total number of security requests made. This is the number of security events that Umbrella is capable of blocking if correctly configured. Use this number in conjunction with Total Blocked to show the value that Umbrella can bring. All Security Requests will most likely be greater than Total Blocked.
  • Total Queries —The total number of queries made by the trial.
  • View Report—Click Generate Report to generate a Proof of Value report that includes data about your trial customer's use of Umbrella. See Prove the Value of Umbrella.

Sorting by column—the most critical sort—allows you to identify trials that are receiving particular value from Umbrella based on the number of threats prevented, or those which might require special attention due to infected machines reaching out to botnet command and control.

Review Trial Status < Review Security Events > Monitor Trial Expiry Dates

Updated about 1 year ago