Report Hub

The report hub shows key information about the hardware, security threats, and performance against policy for the XG Firewalls that you select.

If you have an Advanced license, you can view reports for multiple firewalls at the same time.

Restriction You can only select multiple firewalls if they're all licensed.

Access the report hub

To access the report hub, go to Firewall management > Report Hub.

You can also access the report hub by doing as follows:

  1. Go to Firewall management > Firewalls.
  2. Select the ellipsis button (…) on the right of the firewall for which you want to view the dashboard.
  3. Select View device reports.

    The Firewall reporting - Report Hub page is shown.

Use the report hub

Select your firewalls from the drop-down list and click Apply. The report hub then shows data from those firewalls. If you want to deselect all of your firewalls, go to the drop-down list and click Deselect all then click Apply. You can also deselect them one at a time.

Note You can currently select up to 100 firewalls.

The report hub is split into the following areas:

  • Network
  • Security
  • Policy

Each area shows a snapshot of information at the time the dashboard page was displayed.

For all areas, in each circle, the color of the value indicates the severity:

  • Red: Critical
  • Yellow: Warning
  • Gray: OK

If you click one of the circles, more detailed information about that attribute is shown in the lower part of the area, for the last 24 hours.

In the lower part of each area, there is a View Report link. If this is enabled, you can click it to view the related report on the firewall reports page.

Network

The Network area shows the following information:

  • CPU shows the percentage CPU usage. Severity:
    • Red: more than 90%
    • Yellow: 80–90%
    • Gray: less than 80%
  • Memory shows the percentage memory usage. Severity:
    • Red: more than 90%
    • Yellow: 80–90%
    • Gray: less than 80%
  • VPN shows the number of VPN tunnels that are in a connected state in the firewall.
  • RED shows the number of Sophos Remote Ethernet Devices that are connected to the firewall.
  • Interfaces shows the number of ports that the firewall has.
  • Managed wifi APs shows the number of access points that are connected to the firewall.
Note If you select multiple firewalls, you won't see data for Network or CPU.

Security

The Security area shows the following information:

  • ATP shows the number of threats that have been detected by Sophos Advanced Threat Protection, which is included in the firewall. Severity:
    • Red: more than 0
    • Gray: 0
  • Intrusion attacks shows the number of intrusion attacks that have been detected by the firewall. Severity:
    • Red: At least one attack has a firewall severity level of 4
    • Yellow: At least one attack has a firewall severity level of 3
    • Gray: All attacks have a firewall severity level from 0 to 2
  • Sandstorm cleaned shows the number of malicious files that were scanned and how many were cleaned. Severity:
    • Red: A malicious file has been detected
    • Gray: No malicious file has been detected

Policy

The Policy area shows the following information:

  • Allowed app categories shows the number of application categories that are allowed by the firewall.
  • Apps new/mapped shows the number of newly-detected applications that are unknown to the firewall and the number of detected applications that have been sorted into a category.
  • Risky apps shows the number of applications that were detected that are categorized with a Sophos XG Firewall risk level of 4 (high) or 5 (very high). Severity:
    • Red: At least one application is categorized as risk level 5
    • Yellow: At least one application is categorized as risk level 4
    • Gray: All applications are categorized as risk level 3 or lower
  • New cloud apps shows the number of new cloud applications that were detected by the firewall.
  • Blocked app categories shows the number of website categories that were accessed and blocked by the firewall.
  • Objectionable category shows the number of website categories that were accessed that are classified as objectionable. Severity:
    • Red: more than 0
    • Gray: 0