DPI Forensics Reports

    There are two ways of generating DPI forensics report:

    • Online report - generated from captured packets through port mirroring
    • Offline report - generated by uploading pcap file

    DPI reports are based on time and defined criteria. DPI reports are mainly concentrated on 3 metrics URL, NRT, ART.

    DPI Forensics Reports

    Steps to create Online DPI reports:

    1. Navigate to Reports > DPI
    2. Select the criteria and enter the details. Click on add icon You can add the criteria as Source address/nodes/network, destination address/nodes/network, URL, Application, and port. Criteria can be none or any or multiple of the list.
    3. Select the "From" and "To" time period.
    4. Click on "Generate Report"

    Steps to create Offline DPI reports:

    Steps to create Offline DPI reports

    1. NNavigate to Reports > DPI > Offline
    2. Upload the .pcap file
    3. Select the criteria and enter the details. Click on add icon You can add the criteria as Source address/nodes/network, destination address/nodes/network, URL, Application, and port. Criteria can be none or any or multiple of the list.
    4. Select the "From" and "To" time period
    5. Click on "Generate Report"

    Once the report are generated, you can see reports based on traffic, application (Layer 4), URL hits, source, destination and conversation.

    DPI traffic

    DPI traffic

    DPI Application

    DPI Application

    DPI url hits

    DPI url hits

    DPI conversation

    DPI conversation