User Guide
Page 3
... This manual is available at least a basic knowledge of TCP/IP networking concepts and topology. Documentation Feedback Send your comments, questions or suggestions to: techwriters@zyxel.com.tw Thank you! Vantage Report User's Guide 3 Need More Help? More help for an online glossary of networking terms and additional support documentation.
... This manual is available at least a basic knowledge of TCP/IP networking concepts and topology. Documentation Feedback Send your comments, questions or suggestions to: techwriters@zyxel.com.tw Thank you! Vantage Report User's Guide 3 Need More Help? More help for an online glossary of networking terms and additional support documentation.
User Guide
Page 4
... for the region in order to better understand how to use ZyXEL products and share your experiences as well. Learn from this link. This is a collection of answers to solve it. 4 Vantage Report User's Guide Customer Support Should problems arise that you received your device. •... Brief description of the problem and the steps you bought the device. See http://www.zyxel.com/web/contact_us.php for contact information. Please have ...
... for the region in order to better understand how to use ZyXEL products and share your experiences as well. Learn from this link. This is a collection of answers to solve it. 4 Vantage Report User's Guide Customer Support Should problems arise that you received your device. •... Brief description of the problem and the steps you bought the device. See http://www.zyxel.com/web/contact_us.php for contact information. Please have ...
User Guide
Page 5
... Conventions • The version number on the title page is the version of Vantage Report that could harm you to configure or helpful tips) or recommendations. For example, click Report > Network Traffic > WEB > Top Hosts means first click the Report main menu and then Network Traffic, WEB and finally click Top Hosts. Warnings tell... Warnings and Notes These are how warnings and notes are denoted using a right angle bracket (>). Computer Server Prestige Device ZyWALL Device User VPN Tunnel Internet Vantage Report User's Guide 5
... Conventions • The version number on the title page is the version of Vantage Report that could harm you to configure or helpful tips) or recommendations. For example, click Report > Network Traffic > WEB > Top Hosts means first click the Report main menu and then Network Traffic, WEB and finally click Top Hosts. Warnings tell... Warnings and Notes These are how warnings and notes are denoted using a right angle bracket (>). Computer Server Prestige Device ZyWALL Device User VPN Tunnel Internet Vantage Report User's Guide 5
User Guide
Page 6
Used electrical and electronic equipment should not be treated separately. 6 Vantage Report User's Guide WEEE stands for Waste Electronics and Electrical Equipment. It means that used electrical and electronic products should be mixed with this symbol, which is known as the WEEE mark. Document Conventions Your product is marked with general waste.
Used electrical and electronic equipment should not be treated separately. 6 Vantage Report User's Guide WEEE stands for Waste Electronics and Electrical Equipment. It means that used electrical and electronic products should be mixed with this symbol, which is known as the WEEE mark. Document Conventions Your product is marked with general waste.
User Guide
Page 7
Contents Overview Contents Overview Introduction ...19 Introducing Vantage Report ...21 The Vantage Report Server ...23 The Web Configurator ...33 Monitors, Reports and Logs 63 Monitor ...65 Network Traffic ...95 Secure Remote Access ...183 Network Security ...269 E-Mail Security ...333 Web Security ...383 Security Policy Enforcement ...443 Event ...499 Schedule Report ...509 Logs ...527 System Setting, User Management and Troubleshooting 547 System Setting ...549 User Management ...577 Troubleshooting ...583 Appendices and Index ...587 Vantage Report User's Guide 7
Contents Overview Contents Overview Introduction ...19 Introducing Vantage Report ...21 The Vantage Report Server ...23 The Web Configurator ...33 Monitors, Reports and Logs 63 Monitor ...65 Network Traffic ...95 Secure Remote Access ...183 Network Security ...269 E-Mail Security ...333 Web Security ...383 Security Policy Enforcement ...443 Event ...499 Schedule Report ...509 Logs ...527 System Setting, User Management and Troubleshooting 547 System Setting ...549 User Management ...577 Troubleshooting ...583 Appendices and Index ...587 Vantage Report User's Guide 7
User Guide
Page 9
... of Contents...9 Part I: Introduction 19 Chapter 1 Introducing Vantage Report 21 1.1 Introduction ...21 1.2 License Versions ...22 1.3 Hardware Requirements ...22 Chapter 2 The Vantage Report Server ...23 2.1 Starting and Stopping the Vantage Report Server 23 2.2 E-Mail in the Vantage Report Server 24 2.3 Time in the Vantage Report Server 25 2.4 Common Terms ...25 2.5 Common Icons ...27 2.6 ZyXEL Device Configuration and Source Data 27 Chapter 3 The...
... of Contents...9 Part I: Introduction 19 Chapter 1 Introducing Vantage Report 21 1.1 Introduction ...21 1.2 License Versions ...22 1.3 Hardware Requirements ...22 Chapter 2 The Vantage Report Server ...23 2.1 Starting and Stopping the Vantage Report Server 23 2.2 E-Mail in the Vantage Report Server 24 2.3 Time in the Vantage Report Server 25 2.4 Common Terms ...25 2.5 Common Icons ...27 2.6 ZyXEL Device Configuration and Source Data 27 Chapter 3 The...
User Guide
Page 10
Table of Contents Part II: Monitors, Reports and Logs 63 Chapter 4 Monitor...65 4.1 Monitor (Folder) ...65 4.1.1 Customize the Column Fields 66 4.2 Dashboard ...67 4.3 Dashboard ...69 4.4 CPU Usage Monitor ...71 4.5 Memory Usage Monitor ...... Protocols Drill-Down 104 5.1.5 Top Bandwidth Hosts 106 5.1.6 Top Bandwidth Hosts Drill-Down 110 5.1.7 Top Bandwidth Users 112 5.1.8 Top Bandwidth Users Drill-Down 115 10 Vantage Report User's Guide
Table of Contents Part II: Monitors, Reports and Logs 63 Chapter 4 Monitor...65 4.1 Monitor (Folder) ...65 4.1.1 Customize the Column Fields 66 4.2 Dashboard ...67 4.3 Dashboard ...69 4.4 CPU Usage Monitor ...71 4.5 Memory Usage Monitor ...... Protocols Drill-Down 104 5.1.5 Top Bandwidth Hosts 106 5.1.6 Top Bandwidth Hosts Drill-Down 110 5.1.7 Top Bandwidth Users 112 5.1.8 Top Bandwidth Users Drill-Down 115 10 Vantage Report User's Guide
User Guide
Page 11
... Peer Gateways Drill-Down 189 6.1.5 Top Secure Remote Access Sites 191 6.1.6 Top Secure Remote Access Sites Drill-Down 194 6.1.7 Top Secure Remote Access Tunnels 196 Vantage Report User's Guide 11
... Peer Gateways Drill-Down 189 6.1.5 Top Secure Remote Access Sites 191 6.1.6 Top Secure Remote Access Sites Drill-Down 194 6.1.7 Top Secure Remote Access Tunnels 196 Vantage Report User's Guide 11
User Guide
Page 12
... Blocked 269 7.1.2 Top Packets Blocked 272 7.2 Attack ...275 7.2.1 Attack Summary ...275 7.2.2 Attack Summary Drill-Down 278 7.2.3 Top Attacks ...279 7.2.4 Top Attacks Drill-Down 282 12 Vantage Report User's Guide Table of Contents 6.1.8 Top Secure Remote Access Tunnels Drill-Down 199 6.1.9 Top Secure Remote Access Protocols 201 6.1.10 Top Secure Remote Access Protocols...
... Blocked 269 7.1.2 Top Packets Blocked 272 7.2 Attack ...275 7.2.1 Attack Summary ...275 7.2.2 Attack Summary Drill-Down 278 7.2.3 Top Attacks ...279 7.2.4 Top Attacks Drill-Down 282 12 Vantage Report User's Guide Table of Contents 6.1.8 Top Secure Remote Access Tunnels Drill-Down 199 6.1.9 Top Secure Remote Access Protocols 201 6.1.10 Top Secure Remote Access Protocols...
User Guide
Page 13
... 348 8.2 Spam ...349 8.2.1 Spam Summary ...349 8.2.2 Spam Summary Drill-Down 352 8.2.3 Top Spam Senders 353 8.2.4 Top Spam Sources 356 8.2.5 Spam Scores ...359 8.3 Intrusion Hits ...361 Vantage Report User's Guide 13
... 348 8.2 Spam ...349 8.2.1 Spam Summary ...349 8.2.2 Spam Summary Drill-Down 352 8.2.3 Top Spam Senders 353 8.2.4 Top Spam Sources 356 8.2.5 Spam Scores ...359 8.3 Intrusion Hits ...361 Vantage Report User's Guide 13
User Guide
Page 14
... 428 9.3.6 Top Intrusion Hits Sources Drill-Down 431 9.3.7 Top Intrusion Hits Destinations 433 9.3.8 Top Intrusion Hits Destinations Drill-Down 436 9.3.9 Intrusion Hits Severities 438 14 Vantage Report User's Guide
... 428 9.3.6 Top Intrusion Hits Sources Drill-Down 431 9.3.7 Top Intrusion Hits Destinations 433 9.3.8 Top Intrusion Hits Destinations Drill-Down 436 9.3.9 Intrusion Hits Severities 438 14 Vantage Report User's Guide
User Guide
Page 15
... Event ...499 11.1 Successful Logins ...499 11.2 Failed Logins ...501 11.3 Top Sessions Per Host ...502 11.4 Top Sessions Per User ...505 Chapter 12 Schedule Report ...509 Vantage Report User's Guide 15
... Event ...499 11.1 Successful Logins ...499 11.2 Failed Logins ...501 11.3 Top Sessions Per Host ...502 11.4 Top Sessions Per User ...505 Chapter 12 Schedule Report ...509 Vantage Report User's Guide 15
User Guide
Page 16
Table of Contents 12.1 Scheduled Report Summary Screen 509 12.2 Customize Daily Report Screen 510 12.3 Customize Weekly Report Screen 518 12.4 Customize Overtime Report Screen 520 12.5 Configure Template List 522 12.6 Template Add/Edit ...523 12.7 Logo Template ...523 12.8 Logo Template Add/Edit 524 Chapter 13 Logs .......5.2 Registration > Upgrade Screen 560 14.6 Notification ...561 14.6.1 Add/Edit a Notification 563 14.7 Rule-Based Alert ...565 14.7.1 Add/Edit a Rule-based Alert 566 16 Vantage Report User's Guide
Table of Contents 12.1 Scheduled Report Summary Screen 509 12.2 Customize Daily Report Screen 510 12.3 Customize Weekly Report Screen 518 12.4 Customize Overtime Report Screen 520 12.5 Configure Template List 522 12.6 Template Add/Edit ...523 12.7 Logo Template ...523 12.8 Logo Template Add/Edit 524 Chapter 13 Logs .......5.2 Registration > Upgrade Screen 560 14.6 Notification ...561 14.6.1 Add/Edit a Notification 563 14.7 Rule-Based Alert ...565 14.7.1 Add/Edit a Rule-based Alert 566 16 Vantage Report User's Guide
User Guide
Page 17
Table of Contents Chapter 15 User Management ...577 15.1 Group Screen ...577 15.1.1 Group > Add/Edit Group Screen 578 15.2 Account Screen ...579 15.2.1 Account > Add/Edit User Account Screen 580 Chapter 16 Troubleshooting...583 Part IV: Appendices and Index 587 Appendix A Product Specifications 589 Appendix B ZyWALL USG Series and ZyWALL 1050 Log Descriptions 599 Appendix C ZyNOS Log Descriptions 645 Appendix D Open Software Announcements 671 Appendix E Legal Information 709 Index...711 Vantage Report User's Guide 17
Table of Contents Chapter 15 User Management ...577 15.1 Group Screen ...577 15.1.1 Group > Add/Edit Group Screen 578 15.2 Account Screen ...579 15.2.1 Account > Add/Edit User Account Screen 580 Chapter 16 Troubleshooting...583 Part IV: Appendices and Index 587 Appendix A Product Specifications 589 Appendix B ZyWALL USG Series and ZyWALL 1050 Log Descriptions 599 Appendix C ZyNOS Log Descriptions 645 Appendix D Open Software Announcements 671 Appendix E Legal Information 709 Index...711 Vantage Report User's Guide 17
User Guide
Page 19
PART I Introduction Introducing Vantage Report (21) The Vantage Report Server (23) The Web Configurator (33) 19
PART I Introduction Introducing Vantage Report (21) The Vantage Report Server (23) The Web Configurator (33) 19
User Guide
Page 21
... send their logs and traffic statistics to easily manage, monitor and gather statistics on page 589 for Vantage Report setup requirements, installation, and access. See Appendix A on ZyXEL devices located worldwide. Figure 1 Typical Vantage Report Application C A B In this information. The Vantage Report server collects this example, you can • monitor the whole network • look at historical...
... send their logs and traffic statistics to easily manage, monitor and gather statistics on page 589 for Vantage Report setup requirements, installation, and access. See Appendix A on ZyXEL devices located worldwide. Figure 1 Typical Vantage Report Application C A B In this information. The Vantage Report server collects this example, you can • monitor the whole network • look at historical...
User Guide
Page 22
... 50 - 100 750 - 1500 Intel P4 3.2 GHz MEMORY SPEC LOG SPACE REQUIRED (GB/ DAY) 512 MB 0 - 1 1 GB 1 - 12 1 GB 12 - 24 22 Vantage Report User's Guide See Section 14.5 on page 558 for example. Note: This User's Guide discusses the features in the full version. When you install... Vantage Report, you can also send statistical reports to manage one device. The more powerful your computer, the more devices you get the basic version. There are two versions ...
... 50 - 100 750 - 1500 Intel P4 3.2 GHz MEMORY SPEC LOG SPACE REQUIRED (GB/ DAY) 512 MB 0 - 1 1 GB 1 - 12 1 GB 12 - 24 22 Vantage Report User's Guide See Section 14.5 on page 558 for example. Note: This User's Guide discusses the features in the full version. When you install... Vantage Report, you can also send statistical reports to manage one device. The more powerful your computer, the more devices you get the basic version. There are two versions ...
User Guide
Page 23
... Start > Control Panel > Performance and Maintenance > Administrative Tools > Services. Vantage Report User's Guide 23 To open this service starts automatically when you log in to start, stop, or configure...Vantage Report server runs as a service on the Vantage Report server. The Services screen opens. You can use the services management screen to the Vantage Report server. CHAPTER 2 The Vantage Report Server This chapter explains several characteristics of the Vantage Report server. 2.1 Starting and Stopping the Vantage Report Server Note: Make sure the port Vantage Report...
... Start > Control Panel > Performance and Maintenance > Administrative Tools > Services. Vantage Report User's Guide 23 To open this service starts automatically when you log in to start, stop, or configure...Vantage Report server runs as a service on the Vantage Report server. The Services screen opens. You can use the services management screen to the Vantage Report server. CHAPTER 2 The Vantage Report Server This chapter explains several characteristics of the Vantage Report server. 2.1 Starting and Stopping the Vantage Report Server Note: Make sure the port Vantage Report...
User Guide
Page 24
.... in some situations, it sends e-mail to send information in the Vantage Report Server Note: Before the Vantage Report server can use e-mail to any valid e-mail address. See Appendix A on page 549. 24 Vantage Report User's Guide In other situations, it sends e-mail to configure the ...one -time to start or stop the Vantage Report service. See Section 14.2 on Vantage Report. The Services screen opens. 4 Right-click on page 554 for a list of parameters and threshold values. In some situations, however, the Vantage Report server starts or stops receive logs. ...
.... in some situations, it sends e-mail to send information in the Vantage Report Server Note: Before the Vantage Report server can use e-mail to any valid e-mail address. See Appendix A on page 549. 24 Vantage Report User's Guide In other situations, it sends e-mail to configure the ...one -time to start or stop the Vantage Report service. See Section 14.2 on Vantage Report. The Services screen opens. 4 Right-click on page 554 for a list of parameters and threshold values. In some situations, however, the Vantage Report server starts or stops receive logs. ...
User Guide
Page 25
... information (log entries or traffic statistics) from the ZyXEL devices, not the time the device puts in any screen (including log viewers). The Vantage Report server sends an e-mail message to the email address associated with the current time in the Vantage Report server. • The Vantage Report server processes log entries and traffic statistics before the...
... information (log entries or traffic statistics) from the ZyXEL devices, not the time the device puts in any screen (including log viewers). The Vantage Report server sends an e-mail message to the email address associated with the current time in the Vantage Report server. • The Vantage Report server processes log entries and traffic statistics before the...