How to generate a report of network traffic and threats (CTA)?
Description
Capture Threat Assessment (CTA) v2.0. is a SonicWall service that provides network traffic and threat report generation in PDF format. The service is provided directly from the SonicOS web management interface. The Capture Threat Assessment service accurately identifies real-time vulnerabilities, exploits, intrusions, and other network-based threats. With it, you can see security gaps in the organization and better understand the risks.
Resolution for SonicOS 7.X
This release includes significant user interface changes and many new features that are different from the SonicOS 6.5 and earlier firmware. The below resolution is for customers using SonicOS 7.X firmware.
Navigate to the MONITOR | AppFlow| CTA Report page to configure settings and generate the report. Previous reports are saved in the cloud and displayed as a table on the page.
- You can select whether you would like to generate the reports since the Last Reset or Restart from the Dropdown. Then you can click on the Generate Report. It takes a few moments for the report generation.
--kA1VN0000000GRP0A2-0EMVN00000Eo2Mr.png)
- Once the report is generated you can click on the Download Latest Report button to export the report in PDF.
--kA1VN0000000GRP0A2-0EMVN00000Eo2Mt.png)
- All the previously downloaded reports will be visible in the Completed Reports section and can be downloaded or deleted from the UI at any time.
--kA1VN0000000GRP0A2-0EMVN00000Eo2My.png)
- You can also use Advanced Options to customize the reports and select the sections of the data you would like to see in the final report.
--kA1VN0000000GRP0A2-0EMVN00000Eo2N2.png)
- There is also an option to use a CUSTOM LOGO. The logo should be in Base 64 encoded format to be added here. You can use any online tool to convert a PNG file to Base64 encoded format and paste the result in the box provided.
--kA1VN0000000GRP0A2-0EMVN00000Eo2N3.png)
--kA1VN0000000GRP0A2-0EMVN00000Eo2Mn.gif)
NOTE: App Visualization licensing is recommended for complete report data.
A few snippets from the generated report from the firewall :
--kA1VN0000000GRP0A2-0EMVN00000Eo2N4.png)
--kA1VN0000000GRP0A2-0EMVN00000Eo2Mm.png)
--kA1VN0000000GRP0A2-0EMVN00000Eo2N5.png)
Resolution for SonicOS 6.5
This release includes significant user interface changes and many new features that are different from the SonicOS 6.2 and earlier firmware. The below resolution is for customers using SonicOS 6.5 firmware.
Navigate to the INVESTIGATE | Reports | Capture Threat Assessment page to configure settings and generate the report. Previous reports are saved in the cloud and displayed as a table on the page.
- You can select whether you would like to generate the reports since the last Reset or Restart. Then you can click on the GENERATE NEW REPORT. It takes a few moments for the report generation.
--kA1VN0000000GRP0A2-0EMVN00000Eo2Mz.png)
- Once the report is generated you can click on the Report to export the report in PDF.
--kA1VN0000000GRP0A2-0EMVN00000Eo2Mk.png)
- All the previously downloaded reports will be visible in the Previous Reports section and can be downloaded or deleted from the UI at any time.
--kA1VN0000000GRP0A2-0EMVN00000Eo2Mo.png)
- You can also use Advanced Options to customize the reports and select the sections of the data you would like to see in the final report.
--kA1VN0000000GRP0A2-0EMVN00000Eo2Ml.png)
- There is also an option to use a Custom Logo. The logo should be in Base 64 encoded format to be added here. You can use any online tool to convert a PNG file to Base64 encoded format and paste the result in the box provided.
--kA1VN0000000GRP0A2-0EMVN00000Eo2N6.png)
NOTE: CTA v2.0 provides a number of enhancements for the current Capture Threat Assessment cloud service and reporting on all SonicWall firewalls, as described below.
NOTE: App Visualization licensing is recommended for complete report data.
A few snippets from the generated report from the firewall:
- New Report Template:
A new report template design provides the latest SonicOS look and feel.--kA1VN0000000GRP0A2-0EMVN00000Eo2N1.png)
- Application Statistics:
The new report template adds a more meaningful application, threat, web, and network data.--kA1VN0000000GRP0A2-0EMVN00000Eo2Mv.png)
- Industry and Global Level Statistics Comparison:
A new report template provides you with the ability to compare your statistics alongside industry and global data.--kA1VN0000000GRP0A2-0EMVN00000Eo2Mx.png)
- Key Findings Summarization:
The new report template provides a key findings page that summarizes the overall pages into a single page for quick reference by executives.--kA1VN0000000GRP0A2-0EMVN00000Eo2Mq.png)
- Recommendations:
The new report template provides a recommendation page with a summary of steps you can take to fix the issues found during the reporting period.--kA1VN0000000GRP0A2-0EMVN00000Eo2N0.png)