Firewall report dashboard

The firewall report dashboard shows key information about the hardware, security threats and the performance against policy for the Sophos XG Firewall that you select on the Firewall Management – Firewalls page.

To view the report dashboard:

  1. Go to Firewall management > Firewalls.
  2. Select the ellipsis button (…) on the right of the firewall for which you want to view the dashboard.
  3. Select View device reports.

    The Firewall reporting - Report dashboard page is shown.

The dashboard is split into the following areas:

  • Network
  • Security
  • Policy

Each area shows a snapshot of information at the time the dashboard page was displayed.

For all areas, in each circle, the color of the value indicates the severity:

  • Red: Critical
  • Yellow: Warning
  • Gray: OK

If you click one of the circles, more detailed information about that attribute is shown in the lower part of the area, for the last 24 hours.

In the lower part of each area, there is a View Report link. If this is enabled, you can click it to view the related report on the firewall reports page.

Network

The Network area shows the following information:

  • CPU shows the percentage CPU usage. Severity:
    • Red: more than 90%
    • Yellow: 80–90%
    • Gray: less than 80%
  • Memory shows the percentage memory usage. Severity:
    • Red: more than 90%
    • Yellow: 80–90%
    • Gray: less than 80%
  • VPN shows the number of VPN tunnels that are in a connected state in the firewall.
  • RED shows the number of Sophos Remote Ethernet Devices that are connected to the firewall.
  • Interfaces shows the number of ports that the firewall has.

Security

The Security area shows the following information:

  • ATP shows the number of threats that have been detected by Sophos Advanced Threat Protection, which is included in the firewall. Severity:
    • Red: more than 0
    • Gray: 0
  • Intrusion attacks shows the number of intrusion attacks that have been detected by the firewall. Severity:
    • Red: At least one attack has a firewall severity level of 4
    • Yellow: At least one attack has a firewall severity level of 3
    • Gray: All attacks have a firewall severity level from 0 to 2
  • Sandstorm cleaned shows the number of malicious files that were scanned and how many were cleaned. Severity:
    • Red: A malicious file has been detected
    • Gray: No malicious file has been detected

Policy

The Policy area shows the following information:

  • Allowed app categories shows the number of application categories that are allowed by the firewall.
  • Apps new/mapped shows the number of newly-detected applications that are unknown to the firewall and the number of detected applications that have been sorted into a category.
  • Risky apps shows the number of applications that were detected that are categorized with a Sophos XG Firewall risk level of 4 (high) or 5 (very high). Severity:
    • Red: At least one application is categorized as risk level 5
    • Yellow: At least one application is categorized as risk level 4
    • Gray: All applications are categorized as risk level 3 or lower
  • New cloud apps shows the number of new cloud applications that were detected by the firewall.
  • Blocked app categories shows the number of website categories that were accessed and blocked by the firewall.
  • Objectionable category shows the number of website categories that were accessed that are classified as objectionable. Severity:
    • Red: more than 0
    • Gray: 0