Skip to content

Reports

Reports

The Reports tab allows users to easily generate and export summary reports detailing the traffic and alerts monitored by NETALERT.

Users can instantly generate a report by clicking the Alt Image button. This feature enables users to efficiently generate reports, offering both flexibility in customization and rapid access to critical insights

Alt Image

Within the Reports section, users are provided with several options to manage and review report data effectively:

  • Export Reports: Reports can be exported in either PDF or HTML format, allowing for flexible viewing and sharing.
  • Delete Reports: Previously generated reports can be easily deleted to maintain a clean and organized report list.
  • Truncate – Clear the entire list of Reports.

The exported PDF report is presented in the following format:

Alt Image

The exported HTML report is presented in the following format:

Alt Image

Reports Configuration

Users can personalize reports to match their specific needs through the Reports Config settings. This section allows customization by adjusting parameters and options available in the system, ensuring the reports are tailored to user preferences.

Automatic report generation can be scheduled at regular intervals by selecting the Alt Image button. Reports can be configured to run daily, weekly, or monthly, depending on preferred frequency. This functionality is especially useful for generating periodic summaries and maintaining consistent updates.

Alt Image

Alt Image

  • Report configuration can be enabled or disabled as needed.
  • The report interval may be modified by selecting the Edit Interval button, which opens a configuration window for adjustment.

Alt Image

The following parameters define the structure and content of each report. They provide detailed insights into network activity, alert data, and traffic analysis metrics:

  • Alert Name: The label of the specific alert triggering the report.

  • Alerts Count: Total number of alerts recorded in the report.

  • Destination IP Count: Number of unique destination IP addresses detected.

  • Destination Port Count: Number of unique destination ports identified.

  • Detected Traffic Tag: Classification or tag assigned to the detected traffic (e.g., suspicious, normal).

  • DNS Request Error: Count of failed or malformed DNS requests.

  • Emails: List of email addresses associated with alert notifications or report delivery.

  • Ethernet Type Count: Number of distinct Ethernet frame types detected.

  • Hostnames: List of hostnames resolved or identified during analysis.

  • ML Score: Machine Learning score indicating the potential for malicious behavior.

  • Protocol Count: Number of different network protocols observed.

  • Reports Interval: Frequency of scheduled report generation (e.g., daily); configurable.

  • Source IP Count: Number of unique source IP addresses detected.

  • Source Port Count: Number of unique source ports identified.

  • Traffic Count: Total number of traffic events or flows recorded.

Go back to the Administration index.