Alerts Tab

View status and alerts information

On the alerts tab, you can view information on the status of an appliance and on alerts that occur.

Select Dashboard | Alerts.
[Optional] Refresh information on alerts using one of the following two options:
- Automatic refresh — Performs an automatic refresh in regular intervals. This option is enabled by default.
- Refresh now — Performs an immediate refresh

Overview of status information

Information about the status of an appliance is displayed under Appliances Status on the Alerts tab of the dashboard.

If an appliance is a node in a Central Management configuration, information on the other nodes is also displayed.

The following table provides an overview of this information.

Information	Description
Appliance	Provides basic appliance information. Name — Specifies the name of an appliance.
Performance	Provides key performance parameters. Alert peaks, last 7 days — Indicates the most severe alert on an appliance for each of the last seven days. A colored field is displayed for each day (right-most field is today): Gray — No alert during the day Green — Most severe alert during the day was an information Yellow — Most severe alert during the day was a warning Red — Most severe alert during the day was an error Requests per second — Provides a diagram showing how a number of web requests in HTTP and HTTPS mode received on the appliance evolved over the last 30 minutes. The value to the right of the diagram is the average number of requests per second over the last ten minutes.
Skyhigh Security Anti-Malware Versions	Provides update and version information on modules used in virus and malware filtering. Last update — Shows the number of minutes since the modules were last updated. Gateway Engine — Shows the version number of the Skyhigh Security Web Gateway Anti-Malware engine. Proactive Database — Shows the version number of the Proactive Database. DATs — Shows the version number of the DAT files (containing virus signatures).
URL Filter	Provides update and version information for the module used in URL filtering. Last update — Shows the number of days since the module was last updated. Version — Shows the version number of the module.
Vulnerabilities	Provides information about recently detected CVE vulnerabilities and measures for mitigation.

Alert filtering options

Information about alerts on an appliance is provided under Alerts on the Alerts tab of the dashboard. You can filter this information using several filtering options.

If an appliance is a node in a Central Management configuration, alerts for the other nodes are also shown. Then you can also filter the nodes you want to view alerts for.

The following table describes the filtering options.

Option	Definition
Appliance Filter	Filters alerts according to the nodes they occurred on in a Central Management configuration. Clicking this button opens a window for selecting the nodes you want to view alerts for. The filter applies as soon as you close the window.
Date Filter	Filters alerts according to the period of time they occurred in. Clicking this button displays a menu for selecting the time period you want to view alerts for. You can select one of the following: All Today Yesterday Last week Custom Under Custom, you can set a start and end date on two calendars and type a start and end time in two filter fields. The time format is hh:mm:ss, using the 24-hours notation. For example, 1 p. m. is 13:00:00. When an appliance is a node in a Central Management configuration and you have selected several nodes of this configuration in the Appliance Filter, alerts are shown for these nodes. They are shown, however, according to the date and time shown on the user interface you have been working with on a particular node to set the Date Filter. For example, you select Today in the Date Filter on a node in Amsterdam at 7 p. m. local time. This means all alerts that occurred during the last 19 hours are shown. For a node in New York, local time is 1 p. m. at the time you set the filter. Alerts that occurred on the New York node are then shown for the last 19 hours, not for the last 13 hours, which would correspond to what Today is for the New York node.
Message Filter	Filters alerts according to alert message types and strings within the message texts. The filter applies as soon as you have set the filter options. Set these options in the following way: Error, Warning, Information — Select the alert message type you want to view or any combination of types. Filter — Optionally type a filtering term in this field. Only alerts with message texts matching this term and the selected type or types are shown. The search for matching terms is performed on alert entries as they are stored in an internal database on an appliance, not as they appear on the user interface. When alerts appear on the user interface, the alert message text can include additional parts. For example, the word origin is added to the name of the component that is the origin of an alert. You can, however, not use origin or other added terms to filter alerts.

Option

Definition

Appliance Filter

Filters alerts according to the nodes they occurred on in a Central Management configuration.

Clicking this button opens a window for selecting the nodes you want to view alerts for.

The filter applies as soon as you close the window.

Date Filter

Filters alerts according to the period of time they occurred in.

Clicking this button displays a menu for selecting the time period you want to view alerts for.

You can select one of the following:

All
Today
Yesterday
Last week
Custom

Under Custom, you can set a start and end date on two calendars and type a start and end time in two filter fields. The time format is hh:mm:ss, using the 24-hours notation. For example, 1 p. m. is 13:00:00.

When an appliance is a node in a Central Management configuration and you have selected several nodes of this configuration in the Appliance Filter, alerts are shown for these nodes.

They are shown, however, according to the date and time shown on the user interface you have been working with on a particular node to set the Date Filter.

For example, you select Today in the Date Filter on a node in Amsterdam at 7 p. m. local time.

This means all alerts that occurred during the last 19 hours are shown. For a node in New York, local time is 1 p. m. at the time you set the filter.

Alerts that occurred on the New York node are then shown for the last 19 hours, not for the last 13 hours, which would correspond to what Today is for the New York node.

Message Filter

Filters alerts according to alert message types and strings within the message texts.

The filter applies as soon as you have set the filter options.

Set these options in the following way:

Error, Warning, Information — Select the alert message type you want to view or any combination of types.
Filter — Optionally type a filtering term in this field. Only alerts with message texts matching this term and the selected type or types are shown.

The search for matching terms is performed on alert entries as they are stored in an internal database on an appliance, not as they appear on the user interface.

When alerts appear on the user interface, the alert message text can include additional parts.

For example, the word origin is added to the name of the component that is the origin of an alert. You can, however, not use origin or other added terms to filter alerts.