Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Highlighted
Silver

Custom Reports on Critical Attacks

Jump to solution

Dear Mates

 

I need your help.

 

I must present a report on my top management that shows the total number of critical attacks, and another one with the names of each attack. For Example: 30 critical attacks prevented, then the name of the attacks

Any idea on how I can accomplish this.

 

Thanks in advance

0 Kudos
1 Solution

Accepted Solutions
Highlighted

Re: Custom Reports on Critical Attacks

Jump to solution

Hello,
Hope you are in R80.XX. Best way to achieve this is to use one of the pre made Smart Event reports or views, for example IPS report or Threat Prevention, they are nice and out of the box.
Above that you can customize those reports.
If you don't have SmartEvent you can filter logs by blade Antibot/Antivirus/IPS and filter them by severity.

Hope it helps!

____________
https://www.linkedin.com/in/federicomeiners/

View solution in original post

5 Replies
Highlighted

Re: Custom Reports on Critical Attacks

Jump to solution

Hello,
Hope you are in R80.XX. Best way to achieve this is to use one of the pre made Smart Event reports or views, for example IPS report or Threat Prevention, they are nice and out of the box.
Above that you can customize those reports.
If you don't have SmartEvent you can filter logs by blade Antibot/Antivirus/IPS and filter them by severity.

Hope it helps!

____________
https://www.linkedin.com/in/federicomeiners/

View solution in original post

Highlighted
Silver

Re: Custom Reports on Critical Attacks

Jump to solution

Hi there

 

Thanks for your help.

 

We are on R80.20.

 

0 Kudos
Highlighted

Re: Custom Reports on Critical Attacks

Jump to solution

Then you are good to go 🙂 Let us know if the reports suit your needs.

____________
https://www.linkedin.com/in/federicomeiners/
0 Kudos
Highlighted
Silver

Re: Custom Reports on Critical Attacks

Jump to solution

Hi Again

I think it is working out just fine.

just a simple question, does the number of "logs" means the number of times a specific attack was prevented?

Thanks

0 Kudos
Highlighted
Admin
Admin

Re: Custom Reports on Critical Attacks

Jump to solution
Yes and no.
An attack could involve multiple connection attempts, each of which were blocked, with each one generating a separate log entry that SmartView/SmartEvent summarized.