Hi,
I receive an executive report from my Sophos UTM 220 running UTM 9 (not iView's executive report) and I found inconsistencies in iView's report over it.
EG the executive report has TOP10 servers, and in one of my reports it looks like someone is viewing netflix :)
TOP10 Servers
| Total packets: 50 620 208 | ||||||
| Total traffic: 48.6 GB | ||||||
| IP | User / Host | Packets | Traffic | % | ||
| 1 | x.x.x.x | My Public IP address (Address) | 20 666 115 | 16.0 GB | 32.97 % | |
| 2 | x.x.x.x. | Internal server 1 | 5 106 365 | 13.6 GB | 27.92 % | |
| 3 | x.x.x.x | Internal server 2 | 3 682 471 | 4.1 GB | 8.44 % | |
| 4 | 23.246.28.131 | ipv4_1.cxl0.c002.syd001.ix.nflxvideo.net | 1 575 504 | 1.3 GB | 2.69 % | |
| 5 | 23.246.28.137 | ipv4_1.cxl0.c008.syd001.ix.nflxvideo.net | 1 307 550 | 1.1 GB | 2.22 % | |
| 6 | 23.246.29.135 | ipv4_1.cxl0.c016.syd001.ix.nflxvideo.net | 1 246 820 | 1.0 GB | 2.13 % | |
| 7 | 23.246.29.132 | ipv4_1.cxl0.c013.syd001.ix.nflxvideo.net | 1 101 146 | 929.9 MB | 1.87 % | |
| 8 | 54.230.143.194 | server-54-230-143-194.sfo5.r.cloudfront.net | 422 442 | 410.6 MB | 0.82 % | |
| 9 | 184.105.233.234 | 184.105.233.234 | 577 119 | 399.7 MB | 0.80 % | |
| 10 | 80.190.148.70 | professional.de.avira-update.com | 444 791 | 365.4 MB | 0.73 % | |
But when I go and look in iView at the various Traffic Usage dashboards I can't see any of these hosts, let alone the traffic size (which here its in GB, but in iViews its only in 100's of MB). Can anyone tell me how or why this is?
Bonus question: how can I track which IPs have been using netflix :).
Regards
Damien
This thread was automatically locked due to age.