Overview of Threat Reports in SonicWall Security Appliance

03/26/2020 65 14950

DESCRIPTION:
Overview of Threat Reports in SonicWall Security Appliance.

RESOLUTION:

SonicWall Threat Reports Overview:

This article provides an introduction to the Threat Reports feature. This section contains the following subsections:

• “What Are Threat Reports?”
• “Benefits”
• “How Does the Threat Reports Work?”

What Are Threat Reports?

The SonicWall Threat Reports provides reports of the latest threat protection data from a single SonicWall appliance and aggregated threat protection data from SonicWall appliances deployed globally. The SonicWall Threat Reports displays automatically upon successful authentication to a SonicWall appliance, and can be viewed at any time by navigating to the Dashboard | Threat Reports menu in the left-hand menu. Reports in the Threat Reports include:

• Viruses Blocked
• Intrusions Prevented
• Spyware Blocked
• Multimedia (IM/P2P) Detected/Blocked

Each report includes a graph of threats blocked over time and a table of the top blocked threats. Reports, which are updated hourly, can be customized to display data for the last 12 hours, 14 days, 21 days, or 6 months. For easier viewing, SonicWall Threat Reports can be transformed into a PDF file format with the click of a button.

Benefits:

The Threat Reports provides the latest threat protection information to keep you informed about potential threats being blocked by SonicWall appliances. If you subscribe to SonicWall’s security services, including Gateway Anti-Virus, Gateway Anti-Spyware, Intrusion Prevention Service (IPS), and Content Filtering Service, you are automatically protected from the threats reported by the SonicWall Threat Reports. SonicWall’s security services include ongoing new signature updates to protect against the latest virus and spyware attacks.
 
How Does the Threat Reports Work?

The SonicWall Threat Reports provides global and appliance-level threat protection statistics.

• At the appliance level, threat protection data from your SonicWall appliance is displayed.
• At the global level, the SonicWall Threat Reports is updated hourly from the SonicWall backend server with aggregated threat protection data from globally-deployed SonicWall appliances.

Data provided by the SonicWall backend server is cached locally for reliable delivery.To be protected from the threats reported in the SonicWall Threat Reports, it is recommended that you purchase SonicWall security services.

NOTE: The SonicWall appliance must have Internet connectivity (including connection to a DNS server) to receive the latest threat protection statistics from the SonicWall backend server, which reports aggregated data from globally deployed SonicWall appliances. If you lose connectivity, cached data from the last update will display, and the latest data will not be available until connectivity is restored.