Symantec Web Gateway lets you generate reports to monitor the following:
Most accessed Web sites
Most active users
Most common malware
You can click linked statistics on the reports to get more information about that user, computer, Web site, category, and so on.
If you have configured Active Directory integration, Symantec Web Gateway displays some report statistics by Active Directory user name. If you have not configured Active Directory integration, Symantec Web Gateway displays those report statistics by host name or IP address instead.
Lets you create your own reports based on the time period and various event statistics.
You can run full queries of report log data.
Lists all the computers that malware has infected.
Infections by Spyware Name
Lists all the malware infections that Symantec Web Gateway detected in your site. The report includes the number of infected computers, and number of times these infections have attempted to contact master Web sites. The report also shows how many infections have occurred for each malware name, and the category and severity of each infection.
Lists all potential attacks.
The following potential attack reports are available:
The Spyware report lists the attempts by remote systems to access an infected computer or send a malicious network element such as a worm.
The IP Scanning report lists the IP addresses that attempted to scan IP address at your site.
The Spamming report lists the IP address that attempted to send spam within your site.
Lists all the monitored or blocked URLs, spyware Web sites, and spyware file downloads attempted by users at your site.
It also lists the number of computers and the number of times these accesses were attempted.
Lists the usage details of various applications and protocols at your site.
This report also lists the number of computers and number of times the network transmissions of these applications were detected.
Lists all attempts to contact the monitored or blocked Web sites by users at your site.
This report also lists the number of computers and the number of times that users attempted to access the Web destinations.
Lists the detected activity that may indicate a botnet.
Lists the files that have been uploaded from your site. The report lists the uploaded files by type.
Lists the reports that you saved.
Lists the alerts that Symantec Web Gateway generates when it detects infections or when certain system events occur.
Alerts are triggered based on the infection count, severity, or based on the IP address or host name of the infected PC.
Search by Hostname
Lists the reports by specifying the Host name of the computers available in the Active Directory network.
Search by User Name
Displays the report statistics by Active Directory user name.
Search by Department
Lets you search reports by department as configured in the Active Directory.
You can also verify that your department is configured in the Organization directory or not.
Search by IP Location
Lets you search reports by IP address, and it lists the geographical location or country of origination of the host computer in the network.
Imported Document ID: HOWTO54145
Subscribing will provide email updates when this Article is updated. Login is required.