WANGUARD 5.2 User Manual & Administrator's Guide
Firewall
Indicates if there was a sofware flter installed or a frewall flter, or both.
From
The date and tme when the atack patern was frst detected
Untl
The date and tme when the atack patern was last detected.
Latest Alarm
How much tme passed since the last detecton of the atack patern.
Max Pkts/s
The maximum packets/second throughput for the trafc matching the atack patern.
Max Bits/s
The maximum bits/second throughput for the trafc matching the atack patern.
Pkts
The number of packets counted in the trafc matching the atack patern.
Bits
The number of bits counted in the trafc matching the atack patern.
Log
When clicking the icon, a new tab opens with a packet-level capture of the atack patern. Available
only if the Response contains a Trafc Capturing acton.
Anomalies Archive
The Anomalies Archive shows all trafc anomalies sorted by tme in descending order. By clicking the down
arrow on any column header, you can apply flters, change sortng directon and hide or show columns.
The <+> sign from the frst column expands the row with additonal informaton about the anomaly,
mitgaton informaton etc. Other columns are explained on previous paragraphs.
Anomalies Overview
Here you can view trends and summarizatons of atacks for the selected tme-frame, Sensors and decoders.
BGP Prefixes
The BGP Prefxes tab contains live and historical data that relates to BGP announcements. The number of
actve BGP announcements is displayed within the Anomalies panel and it's refreshed every 10 seconds. It's not
displayed if it's zero.
The BGP Prefxes tab contains 2 sub-tabs located on the botom side:
BGP Operations
BGP Operatons provides live insight on BGP announcements made by Sensors, Filters or through Console.
Administrator or Operator roles can add and remove BGP announcements manually. To add a new BGP
announcement you must enter the Prefx and select a previously confgured BGP Connecton.
- 9 -
Содержание Wanguard 5.2
Страница 1: ......