Академический Документы
Профессиональный Документы
Культура Документы
Administrator Guide
Version 10
Contents
Preface ...................................................................................................................... 3
Intended Audience.......................................................................................................................... 3
Guide Organization......................................................................................................................... 3
Part 2: Configuration.............................................................................................. 65
Custom View Management .......................................................................................................... 65
Report Notification Management .................................................................................................. 70
Data Management ........................................................................................................................ 76
Manual Purge ............................................................................................................................... 80
Bookmark Management ............................................................................................................... 81
Chart Preferences ........................................................................................................................ 84
ConnectWise ................................................................................................................................ 86
Preface
Welcome to Cyberoam iView Administrators Guide.
Intended Audience
This Guide is intended for the people who want to access reports generated by Cyberoam iView. A
basic TCP/IP networking concepts knowledge is required.
Guide Organization
This Guide provides information regarding the administration and customization of Cyberoam
iView and helps you manage and customize Cyberoam iView to meet your organizations various
requirements.
This Guide is organized into six parts:
Part 1 Cyberoam iView Basics
It describes how to start using Cyberoam iView.
Part 2 Configuration
It describes minimum configuration settings required to generate reports using Cyberoam iView,
which includes Custom View management, Report Notification Management, Data Management,
Manual Purge, Bookmark Management and Chart Preferences.
Part 3 Reports
It describes how to access and navigate through the drilldown reports. It also provides description
of all the reports generated by Cyberoam iView. Refer to Cyberoam iView Reports Guide for more
details.
Part 4 Compliance Reports
It describes various types of compliance reports provided by Cyberoam iView and how to access
and navigate through the drilldown reports. It also provides description of all the compliance
reports generated by Cyberoam iView. Refer to Cyberoam iView Reports Guide for more details.
Part 5 - Trend Reports
It describes various types of trend reports to interpret the pattern of the network activities. Refer to
Cyberoam iView Reports Guide for more details.
Part 6 - Search Reports
It describes how to retrieve various reports based on multiple search parameters. Refer to
Cyberoam iView Reports Guide for more details.
Typographic Conventions
All contents in this guide including text or screenshots follow the given list of conventions.
Item
Convention
Server
Client
User
Username
Topic titles
Example
Shaded
typefaces
font
Introduction
Subtitles
Navigation link
Bold typeface
Name
of
a
particular
parameter / field
/
command
button text
Cross
references
Notes & points
to remember
Lowercase italic
type
Enter policy name, replace policy name with the specific name of
a policy
Or
Click Name to select where Name denotes command button text
which is to be clicked
Refer to Customizing User database Clicking on the link will open
the particular topic
Prerequisites
Bold typefaces
between
the
black borders
Hyperlink
in
different color
Bold typeface
between
the
black borders
Notation conventions
Note
Prerequisite
Prerequisite details
Technical Support
You may direct all questions, comments, or requests concerning the software you purchased, your
registration status, or similar issues to Customer care/service department at the following address:
Corporate Office
Cyberoam Technologies Pvt. Ltd.
901, Silicon Tower
Off C.G. Road
Ahmedabad 380006
Gujarat, India.
Phone: +91-79-66065606
Fax: +91-79-26407640
Web site: www.cyberoam.com
Cyberoam contact:
Technical support (Corporate Office): +91-79-26400707
Email: support@cyberoam.com
Web site: www.cyberoam.com
Screen Elements
Description
Username
Password
Language
Log on to
Login button
Click to login
Table - Login screen elements
Chinese-
Description
Navigation Pane
Navigation Pane on the leftmost side consists of multi-level dropdown Main menu. Main menu has following items:
Dashboards
Search
Reports
Custom Views (if created)
Trend Reports
Bookmarks (if created)
Compliance Reports
System
Button Bar
Global Selection
Checkbox
Individual
Selection
Checkbox
Page Information
Area
Bar appears at the top left hand corner of the Information Area of
every page.
Click to select all items.
Click to select individual item.
Screen Elements
Description
Calendar
Breadcrumb
Navigation
Risk Meter
Export to Excel
Export to PDF
Create Bookmark
Page Controls
Dashboard
Cyberoam iView displays Main Dashboard as soon as you logon to the Web Admin Console.
Dashboard provides a summary view of web and mail traffic including what is happening on the
network, such as top attacks or top spammers.
By default, Cyberoam iView provides following dashboards:
Main Dashboard: Provides network traffic overview of the device.
Custom Dashboard: Provides snapshot of users activities in your network
To return to the Main Dashboard from any other page of the Web Admin console, click Home link
provided in Admin Tool bar.
Main Dashboard
Cyberoam iView Main Dashboard provides in depth traffic visibility of the device in terms of traffic
and security overview.
It displays graphical and tabular overview of device network activities in Widget form.
Widget displays report in graphical as well as tabular format. By default, the report is displayed for
the current date. Report date can be changed through the Calendar available on the topmost row
of the page.
Click
button to close the widget and
page to retrieve the closed report widget.
Traffic Dashboard
Cyberoam iView Traffic dashboard is a collection of widgets displaying information regarding total
network traffic.
This dashboard gives complete visibility of network traffic in terms of applications, web categories,
users, hosts, source and destination countries, mail traffic and FTP activities.
Traffic Dashboard consists of following reports in widget form:
Top Applications
Top Application Categories
Top Users
Top Hosts
Top Source Countries
Top Destination Countries
Top Rule ID
Top Web Categories
Top Web Users
Top Domains
Top File Upload
Top Files Uploaded via FTP
Top Files Downloaded via FTP
Top FTP Servers
Mail Traffic Summary
Top Mail Senders
Top Mail Recipients
Security Dashboard
Cyberoam iView Security dashboard is a collection of widgets displaying information regarding
denied network activities and traffic. It also gives overview of malwares and spam along with
source and destination countries.
Security Dashboard consists of following reports in widget form:
Top Denied Hosts
Top Denied Users
Top Denied Applications
Top Denied Destination Countries
Top Denied Source Countries
Top Denied Rule ID
Top Denied Categories
Top Denied Domains
Top Attacks
Top Viruses
Top Spam Senders
Top Spam Recipients
Custom Dashboard
Cyberoam iView provides option to generate custom dashboard based on Username, Source
Host, Senders Email Address and Recipients Email Address.
User Dashboard
Cyberoam iView User Dashboard provides snapshot of users activities in your network.
To view the User Dashboard:
Go to Dashboards Custom Dashboard.
Select Username in Criteria drop-down and specify the username.
Click Go to view user based dashboard.
\
Screen Top Files Downloaded via FTP
\
Screen Top Files Downloaded via FTP
Part 2: Configuration
Cyberoam iView provides number of configuration options for customization as per your network
requirement. You can, configure mail server to send report notifications, create Custom Views and
many more.
This chapter covers following sections:
Custom View Management
Report Notification Management
Data Management
Manual Purge
Bookmark Management
Chart Preferences
Description
Custom View
Custom
View
Description
Select Report
Ok Button
Cancel Button
Description
Custom View
Custom
View
Description
Select Report
Ok Button
Cancel Button
Note
All fields except Custom View Name are editable.
Delete Custom View
Go to System Configuration Custom View to view list of Custom Views.
Screen Elements
Description
Global Selection
Individual
Selection
Delete Button
Description
Add Button
Click to add a new report notification.
Delete Button
Click to delete a report notification.
Send Test Mail Click to send a test mail.
Button
Report Notification
Name
Name of the report notification.
Report
Category of the reports.
Group/Bookmark
Email Frequency
Report notification frequency- daily or weekly.
To Email Address
Email ID of recipient(s).
Last Sent Time
Last time when the report notification was sent.
ConnectWise Schedule
Name
Name of the report notification.
Report
Name of the report to be sent
Frequency
Report notification frequency with time of the day
Number
of Number of records to be sent in report notification.
Record(s)
Last Sent Time
Last time when the report notification was sent.
Table Report Notification Management Screen Elements
Screen Elements
Description
Name
Description
To Email Address
Notification Type
Sorting Criteria
Report Group
Bookmark
Email Frequency
Screen Elements
Description
Name
Description
Report
Number
of
Record(s)
Email Frequency
Ok Button
Cancel Button
Description
Description
To Email Address
Notification Type
Sorting Criteria
Report Group
Email Frequency
Ok Button
Cancel Button
Select type of the report. Possible types of reports are Report Groups
and Bookmarks
Select type of the sorting criteria. Possible types of sorting criteria are
Hits and Bytes.
Displays report category to send report notification, change if required.
Displays e-mail frequency and time. Reports can be mailed daily or
weekly at the configured interval. In case of weekly notification, select
day of the week.
Click to save the changes in report notification.
Click to return to report notification management page.
Table Update Report Notification Screen Elements
Note
All fields except Report Notification name are editable.
Screen Elements
Description
Description
Report
Number
of
Record(s)
Email Frequency
Ok Button
Cancel Button
Note
All fields except Report Notification name are editable.
Screen Elements
Description
Global Selection
Individual
Selection
Delete Button
Data Management
Prerequisite
Super Admin privilege required to access and manage Data Management sub menu of System menu.
Retention of data and log archives use enormous amount of disk space. To control and optimize
the disk space usage, configure the data retention period of detailed and summarized table.
Depending on the compliance requirement, configure the log retention period.
This section describes how to:
Configure Retention Period
Use System Configuration Data Management page to configure retention period
of various data tables. You can configure retention period for various log types.
Screen Elements
Log Retention
Description
Displays type of logs to be retained.
Web Surfing Logs:
Web Surfing logs can be retained for time interval starting from 1 month
to 1 year.
Cyberoam iView has set default storage of 6 months for Web Surfing
logs. You can configure 1 Month, 2 Months, 3 Months, 6 Months, 9
Months or 1 year to retain Web Surfing logs.
Mail Logs:
Mail logs can be retained for time interval starting from 1 month to 3
months.
Cyberoam iView has set default storage of 3 months for Mail logs. You
can configure 1 Month, 2 Months or 3 Months to retain Mail logs.
IM and Blocked IM Logs:
IM and blocked IM logs can be retained for time interval starting from 1
month to 3 months.
Cyberoam iView has set default storage of 3 months for IM and Blocked
IM logs. You can configure 1 Month, 2 Months or 3 Months to retain IM
and Blocked IM logs.
FTP Logs:
FTP logs can be retained for time interval starting from 1 month to 3
months
Cyberoam iView has set default storage of 3 months for FTP logs. You
can configure 1 Month, 2 Months or 3 Months to retain FTP logs.
VPN Logs:
VPN logs can be retained for time interval starting from 1 day to 1 month.
Cyberoam iView has set default storage of 3 months for VPN logs. You
can configure 1 Day, 2 Days, 3 Days, 5 Days, 7 Days or 1 Month to
retain VPN logs.
Internet Usage Logs:
Internet usage logs can be retained for time interval starting from 1 day
to 3 months.
Cyberoam iView has set default storage of 3 months for Internet usage
logs, but you can configure 1 day, 2 days, 3 days, 5 days, 7 days, 1
month or 3 months to retain Internet Usage logs.
Blocked Web Attempts Logs:
Blocked Web Attempts logs can be retained for time interval starting from
1 month to 3 months.
Cyberoam iView has set default storage of 3 months for Blocked Web
Attempts logs, but you can configure 1 month or 2 months to retain
Export
Customization
Apply Button
Enable to allow number of records selection while saving reports in MSExcel format.
Click to apply changes in database configuration.
Table Database Configuration Screen Elements
Description
Period
Note
Based on configured retention period, data from the tables will be deleted on day-by-day basis.
Manual Purge
Prerequisite
Super Admin privilege is required to access and manage Manual Purge sub menu of System menu.
Retention of data and log archives use enormous amount of disk space. You can configure the log
retention period from Data Management. Based on the configured retention period data will be
automatically deleted on day-by-day basis
Use System Configuration Manual Purge page to delete logs manually.
Description
Report Module
Bookmark Management
Bookmark management allows the user to create bookmark of any Cyberoam iView report at any
level of report drill-down. It provides administrator with great level of network visibility based on any
criterion. E.g. the administrator can monitor web usage of a particular user by creating bookmark
of user based web usage report.
Every bookmark should be a part of a defined bookmark group; if the bookmark group is not
created then bookmarks will be members of Default group.
Every bookmark can be sent to the specified Email Address(s) in the form of report notification.
Use System Configuration Bookmark Management to create bookmark groups in
Cyberoam iView.
Screen Elements
Description
Add
Bookmark
Group Button
Bookmark Groups
Delete Button
Screen Elements
Description
Bookmark Group
Name
Add Button
Close Button
Note
Created bookmarks will be displayed under Bookmarks Sub menu of navigation pane.
Description
Bookmark Group
Bookmarks
Description
Note
Removing a bookmark group will remove the bookmark from Cyberoam iView.
Chart Preferences
Chart Preferences menu allows the administrator to configure settings for graphical presentation of
reports. Cyberoam iView reports can be viewed in following graphical forms:
Bar Chart
Pie-Doughnut Chart
Use System Configuration Chart Preferences to configure chart preferences in
Cyberoam iView.
Screen Elements
Bar Chart
Chart Type
Palette
Pie-Doughnut Chart
Chart Type
Palette
Description
Specify Chart Type for bar chart. Available options:
Glass Bar (Default)
Round Bar
Specify Palette for bar chart. Available options:
Light Grey (Default)
Light Green
Light Blue
Light Brown
Light Pink
Specify Palette for Pie-Doughnut chart. Available options:
Pie (Default)
Doughnut
Specify Palette for Pie-Doughnut chart. Available options:
Light Grey (Default)
Light Green
Light Blue
Light Brown
Light Pink
Show Legend
Save Button
ConnectWise
ConnectWise menu allows the administrator to integrate ConnectWise server with Cyberoam
iView. This integration allows use of Cyberoam iView report data to generate reports at
ConnectWise server.
Use System Configuration ConnectWise to integrate Cyberoam iView with
ConnectWise server.
Screen Elements
Description
Enable
ConnectWise
Checkbox
Company ID
URL
Integrator Login
Integrator
Password
Appliance Name
Manage ID
Management
Solution
Apply Button
Given below is the list of Cyberoam iView reports, which can be sent to ConnectWise along with
respective ConnectWise report name:
Cyberoam
iView
Report
Name
Web Usage Top Domains
Blocked Web Attempts Top
Denied Domains
Internet Usage Top Users
Attacks Top Attacks