Device: REPRESENTACIONES_H_C_NAPO (FGT3HD3915808220), VDom: root

2017-03-09 00:00 - 2017-03-10 00:00

Summary Report

Bandwidth and Applications

Bandwidth Usage Number of Sessions

2,000 20,000
1,800 18,000
1,600 16,000

Session (Count)
Traffic (MB)

1,400 14,000
1,200 12,000
1,000 10,000
800 8,000
600 6,000
400 4,000
200 2,000
0 0
03:00 06:00 09:00 12:00 15:00 18:00 21:00 03:00 06:00 09:00 12:00 15:00 18:00 21:00

Top Sources by Bandwidth Usage Top Sources by Sessions

Source % Traffic Source % Session (Count)
192.168.1.126 17.5% 81 MB / 2.8 GB 192.168.2.5 7.4% 28267

192.168.20.40 13.1% 39.1 MB / 2.2 GB 192.168.20.72 5.2% 19991

181.65.211.141 4.6% 7.9 MB / 771.7 MB 192.168.2.60 5.0% 19284

192.168.2.7 4.1% 29.1 MB / 663.9 MB 204.11.232.254 2.7% 10214

192.168.2.60 3.4% 231.2 MB / 351.4 MB 192.168.2.24 2.1% 8005

172.26.103.130 3.0% 14.6 MB / 493.8 MB 192.168.1.126 1.8% 6866

192.168.3.71 1.8% 17.5 MB / 293.9 MB 172.26.102.54 1.6% 6066

192.168.20.74 1.5% 257.7 MB / 4.9 MB 192.168.20.16 1.1% 4236

192.168.2.24 1.5% 163.2 MB / 94.9 MB 192.168.22.211 1.0% 3885

192.168.1.60 1.2% 16.3 MB / 196.7 MB 172.26.102.62 1.0% 3665

Other (1112) 48.2% 1.1 GB / 6.9 GB Other (1115) 71.2% 272474

Total: 1.9 GB / 14.7 GB Total: 382953

Sent Received Session (Count)

Top Applications by Bandwidth Usage Top Applications by Sessions

Application % Traffic Application % Session (Count)
https.browser 26.1% 183 MB / 4.2 GB http.browser_chrome 12.4% 47379

ssh 16.5% 48 MB / 2.7 GB https.browser 8.2% 31287

http.browser_chrome 8.3% 308.8 MB / 1.1 GB google.services 7.8% 29836

google.services 7.2% 322.2 MB / 907.2 MB skype 6.7% 25596

google.accounts 6.4% 24.3 MB / 1 GB google.accounts 5.1% 19498

quic 3.7% 139.6 MB / 495.7 MB quic 4.8% 18296

microsoft.portal 3.4% 56.6 MB / 526.9 MB ssl 4.1% 15816

pop3s 3.2% 16 MB / 534.4 MB http.browser_firefox 3.8% 14697

http.browser_ie 2.6% 34.9 MB / 407.9 MB root.certificate.url 3.8% 14512

http.browser 2.2% 12.3 MB / 365.1 MB http.browser 3.2% 12075

Other (144) 20.3% 839.3 MB / 2.6 GB Other (145) 40.2% 153961

Total: 1.9 GB / 14.7 GB Total: 382953

Sent Received Session (Count)

Page 1
Device: REPRESENTACIONES_H_C_NAPO (FGT3HD3915808220), VDom: root
2017-03-09 00:00 - 2017-03-10 00:00

Top Destination by Bandwidth Usage Top Destination by Sessions

5.2% 80.2%

58.6%
7.6%

9%

5.2%
16.6%

200.60.223.152 = 2.8 GB(16.6%) 191.98.136.138 = 1.5 GB(9%) 64.76.93.205 = 19969(5.2%) 119.29.119.121 = 18218(4.8%)

191.98.136.137 = 1.3 GB(7.6%) 191.98.179.21 = 889 MB(5.2%) 216.58.219.110 = 15845(4.1%) 8.40.222.57 = 11231(2.9%)

190.216.178.219 = 505.4 MB(3%) Other (6475) = 9.8 GB(58.6%) 208.87.3.43 = 10716(2.8%) Other (6478) = 306974(80.2%)

Page 2
Device: REPRESENTACIONES_H_C_NAPO (FGT3HD3915808220), VDom: root
2017-03-09 00:00 - 2017-03-10 00:00

Web Usage
Top Allowed Websites by Requests Top Web User Source by Requests
Website % Visits User Source % Visits
208.87.3.43 22.4% 7924 172.26.102.54 8.2% 5214

equifax.com.pe 14.6% 5158 192.168.20.94 5.1% 3281

ips.encontacto.pe 9.4% 3342 192.168.20.14 4.8% 3037

208.87.3.47 6.6% 2336 192.168.1.168 4.3% 2741

redirector.gvt1.com 6.2% 2193 192.168.22.211 3.5% 2250

www.facebook.com 5.0% 1778 192.168.20.16 2.9% 1867

opcion.com.pe 4.4% 1544 192.168.22.215 2.4% 1564

crl.microsoft.com 3.7% 1327 172.26.102.25 1.9% 1238

dl.google.com 3.2% 1129 192.168.0.60 1.9% 1196

buscandope.com 2.5% 873 192.168.0.61 1.8% 1140

Other (374) 22.1% 7835 Other (611) 63.2% 40357

Total: 35439 Total: 63885

Visits Visits

Top Blocked Websites by Requests Top Web User Source by Requests Blocked
Website % Visits User Source % Visits
ping3.teamviewer.com 11.5% 3281 192.168.20.94 11.5% 3281

whistler.cou...h.net 11.2% 3191 192.168.20.14 10.7% 3037

download.win...e.com 8.2% 2326 192.168.20.16 6.6% 1867

ocsp.digicert.com 7.7% 2188 192.168.22.99 1.7% 486

clients1.google.com 7.4% 2109 192.168.22.75 1.7% 479

www.microsoft.com 2.5% 719 172.26.103.110 1.6% 462

redirector.gvt1.com 2.0% 579 192.168.22.98 1.6% 458

ctldl.window...e.com 2.0% 573 192.168.2.5 1.5% 432

play.google.com 1.7% 489 192.168.23.52 1.5% 416

tn.symcd.com 1.5% 430 172.26.102.78 1.4% 397

Other (309) 44.2% 12561 Other (509) 60.2% 17131

Total: 28446 Total: 28446

Visits Visits

Page 3
Device: REPRESENTACIONES_H_C_NAPO (FGT3HD3915808220), VDom: root
2017-03-09 00:00 - 2017-03-10 00:00

Threats
Top Viruses Name Top Virus IP
No Data No Data

Top Attack Sources Top Attack Victims

No Data No Data

Top Attacks
No Data

Top Spam Source Top Spam Destination

No Data No Data

Top Data Leaking Source Top Data Leaking Rule

No Data No Data

Page 4
Device: REPRESENTACIONES_H_C_NAPO (FGT3HD3915808220), VDom: root
2017-03-09 00:00 - 2017-03-10 00:00

VPN Usage
Top Site-to-Site IPSec VPN Tunnels
No Data

Top Client-to-Site IPSec VPN Users

No Data

Top SSL VPN Users

No Data

Page 5
Device: REPRESENTACIONES_H_C_NAPO (FGT3HD3915808220), VDom: root
2017-03-09 00:00 - 2017-03-10 00:00

Admin Login Events

Admin Login Summary
# User Login Interface Total # of Logins Total # of Config Total Duration
Changes
1 noc https(190.12.64.18) 4 2 35h 00m 19s

2 aore https(192.168.2.2) 3 2 28h 29m 03s

3 aore https(192.168.2.19) 1 1 15h 23m 33s

4 aore https(192.168.2.49) 1 0 8h 30m 44s

Admin Login Failed Summary

# User Login Interface Total # of Failed Logins
1 aore https(192.168.22.245) 1

Page 6