lhs-panel Click here to expand

Sophos reports

EventLog Analyzer supports Sophos Firewall and provides out-of-the-box reports for the following categories of events:

  • Sophos Events: Provides information on all the events associated with Sophos devices.
  • Firewall Allowed and Denied Traffic: Provides insights on traffic based on source, destination, protocol and port, and also generates a report on traffic trends.
  • Firewall Website Traffic: Provides traffic reports based on source, destination, and website traffic trend.
  • Successful and Failed Logons: Provides source and user based reports, trend reports.
  • Firewall Accounts Management: Provides reports on administrator added, deleted or modified.
  • Firewall Policy Management: Provides information on policies added, deleted, or modified.
  • Firewall IDS/IPS Events: Provides insights on attacks based on source and destination IP address, also provides a report on attack trends.
  • System Events: Provides reports on configuration changes, clock update, system status, start and stop of services, features and license status.
  • Failed VPN Logon Reports: Monitors the VPN activities from Sophos logs and offers out-of-the-box reports for failed VPN logons.
  • Device Severity Reports: Provides reports on emergency, alerts, critical, error, warning, and notice events.

Sophos Reports Dashboard

Sophos reports
  • Go to the Reports section. Navigate to Network Devices and select Sophos from the displayed list of devices.
  • Sophos reports
  • You can set filter criteria for events based on Source, Severity and Device and Message.
  • Sophos reports
  • Use logical operators as required to create the filter criteria.
  • Sophos reports
  • Select the Period for which you want the data to be displayed and click Apply.
  • Sophos reports
  • To export a report, click Export as and choose the format. The solution allows you to export the reports in PDF and CSV formats.
  • Sophos reports
  • To generate and redistribute the reports over email at periodic time intervals, you can use the Schedule Reports option.
  • Sophos reports
  • The More link at the top right corner provides you the below customization options:
    1. Set as Default: Allows you to set the selected report as the default report.
    2. Add to Favorites: Marks the selected report as favorite.
    3. Pin to dashboard: Pins the selected report to the dashboard in the Home page.
    Sophos reports

Copyright © 2020, ZOHO Corp. All Rights Reserved.

Get download link