Scribd
Upload
123 views16 pages

User App Risks & Usage - 3jan2023 - 3nov2023

This document contains a summary report of user app risks and usage from an XGS2100 appliance between 2023-01-03 and 2023-11-03. It analyzes source zones, destination zones, application categories, top applications, application technologies, application users, risk levels, top hosts, allowed policies, source countries, top destinations, high-risk applications, high-risk application users, and high-risk hosts. The report found most traffic was from the LAN to the WAN with general internet and infrastructure applications being most common. It identified unidentified users and allowed all traffic according to policy 3.

Uploaded by

iteoi.ktm.2020
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
123 views16 pages

User App Risks & Usage - 3jan2023 - 3nov2023

This document contains a summary report of user app risks and usage from an XGS2100 appliance between 2023-01-03 and 2023-11-03. It analyzes source zones, destination zones, application categories, top applications, application technologies, application users, risk levels, top hosts, allowed policies, source countries, top destinations, high-risk applications, high-risk application users, and high-risk hosts. The report found most traffic was from the LAN to the WAN with general internet and infrastructure applications being most common. It identified unidentified users and allowed all traffic according to policy 3.

Uploaded by

iteoi.ktm.2020
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 16

User app risks & usage

2023-01-03 00:00:00 - 2023-11-03 23:59:59

Appliance:
XGS2100

Appliance key:
X210108KMVD9426

Firmware version:
SFOS 19.0.1 MR-1-Build365

Filter(s) applied while generating this report:


Destination Country is China

Server time : Fri Nov 03 10:16:52 NPT 2023


Reports:

1.Source zones
2.Destination zones
3.Application categories
4.Applications
5.Applications technologies
6.Application users
7.Application risk levels
8.Hosts
9.Allowed policies
10.Source countries
11.Destinations
12.High-risk applications
13.High-risk application users
14.Hosts - high-risk applications

Server time : Fri Nov 03 10:16:52 NPT 2023


1.Source zones
SOURCE ZONE NAME ZONE TYPE HITS BYTES

LAN LAN 325248 53.66 GB

Server time : Fri Nov 03 10:16:52 NPT 2023


2.Destination zones
DESTINATION ZONE NAME ZONE TYPE HITS BYTES

WAN WAN 325248 53.66 GB

Server time : Fri Nov 03 10:16:52 NPT 2023


3.Application categories
CATEGORY HITS BYTES

General Internet 251187 8.97 GB

Infrastructure 49144 43.43 GB

Unclassified 22845 32.65 MB

File Transfer 894 425.07 MB

Web Mail 548 824.19 MB

Social Networking 319 2.55 MB

Mobile Applications 196 2.84 MB

Streaming Media 51 1.19 MB

Proxy and Tunnel 34 104.75 KB

VoIP 18 3.98 MB

E-commerce 6 57.51 KB

General Business 5 46.99 KB

Network Services 1 3 KB

Server time : Fri Nov 03 10:16:52 NPT 2023


4.Applications
APPLICATION/PROTO:PORT RISK CATEGORY HITS BYTES

HTTP 1 General Internet 248350 8.78 GB

Secure Socket Layer Protocol 1 Infrastructure 24831 43.3 GB

DNS 1 Infrastructure 22646 1.65 MB

TCP:80 ? Unclassified 14401 8.34 MB

TCP:443 ? Unclassified 2259 5.36 MB

TCP:9377 ? Unclassified 1747 3.98 MB

SSL Traffic over Non-SSL Ports 1 Infrastructure 1628 120.84 MB

TaoBao 2 General Internet 1066 12.86 MB

Multi Thread File Transfer 3 File Transfer 891 424.47 MB

HTTP Image 1 General Internet 711 164.56 MB

TCP:6881 ? Unclassified 674 74.91 KB

Netease WebMail 4 Web Mail 548 824.19 MB

Baidu Website 2 General Internet 502 6.78 MB

TCP:7001 ? Unclassified 424 9.57 MB

TCP:52000 ? Unclassified 328 34.09 KB

Xinhuanet 2 Social Networking 305 2.21 MB

TCP:53 ? Unclassified 262 61.04 KB

Amap 1 General Internet 204 1.98 MB

UC Browser 3 Mobile Applications 191 2.81 MB

TCP:25000 ? Unclassified 189 1.29 MB

QQ Website 3 General Internet 188 2.2 MB

TCP:34567 ? Unclassified 183 17.46 KB

TCP:8508 ? Unclassified 178 348.09 KB

TCP:8999 ? Unclassified 154 14.68 KB

TCP:8506 ? Unclassified 133 1.04 MB

Server time : Fri Nov 03 10:16:52 NPT 2023


5.Applications technologies
TECHNOLOGY HITS BYTES

Browser Based 252340 9.79 GB

Network Protocol 49111 43.42 GB

Unclassified 22845 32.65 MB

Client Server 952 428.58 MB

Server time : Fri Nov 03 10:16:52 NPT 2023


6.Application users
USER HITS BYTES

Unidentified 325248 53.66 GB

Server time : Fri Nov 03 10:16:52 NPT 2023


7.Application risk levels
RISK APPLICATION COUNT HITS BYTES

1 18 298471 52.38 GB

? 109 22845 32.65 MB

2 9 2022 24.48 MB

3 6 1327 430.53 MB

4 3 583 824.88 MB

Server time : Fri Nov 03 10:16:52 NPT 2023


8.Hosts
HOST HITS BYTES

192.168.0.209 36307 74.54 MB

192.168.0.204 32617 59.82 MB

192.168.0.137 31830 33.62 MB

192.168.0.83 29953 30.77 MB

192.168.0.197 23909 24.31 MB

192.168.0.78 22849 1.76 MB

192.168.0.84 17365 17.97 MB

192.168.0.254 13995 14.93 MB

192.168.0.159 13390 13.73 MB

192.168.0.126 10133 2.36 GB

192.168.0.208 9472 74.52 MB

192.168.0.207 8951 20.9 MB

192.168.0.86 5933 6.21 MB

192.168.0.203 5181 12.47 MB

192.168.0.228 4976 55.19 MB

192.168.0.252 4931 5.22 MB

192.168.0.206 4472 121.46 MB

192.168.0.169 4096 3.94 MB

192.168.0.202 3977 4.06 MB

192.168.0.88 2953 4.33 GB

192.168.0.70 2628 3.81 GB

192.168.0.75 2596 3.06 MB

192.168.0.85 2195 2.37 MB

192.168.0.60 2118 4.43 GB

192.168.0.65 2077 9.12 MB

Server time : Fri Nov 03 10:16:52 NPT 2023


9.Allowed policies
RULE ID HITS BYTES

3 325248 53.66 GB

Server time : Fri Nov 03 10:16:52 NPT 2023


10.Source countries
SOURCE COUNTRY HITS BYTES

Reserved 325248 53.66 GB

Server time : Fri Nov 03 10:16:52 NPT 2023


11.Destinations
DESTINATION HITS BYTES

120.48.53.9 231867 236.41 MB

1.10.1.10 22837 1.69 MB

47.93.61.235 6982 1.27 MB

101.6.15.130 5181 32.65 GB

202.141.160.110 4289 590.16 MB

202.141.176.110 4260 1.31 GB

59.72.66.10 3186 2.06 GB

47.105.202.228 2885 17.01 MB

114.55.18.46 2856 26.18 MB

120.55.144.200 2370 12.59 MB

59.69.128.21 1996 5.48 GB

47.93.59.10 1757 11.7 MB

101.198.2.211 1572 22.04 MB

219.151.40.186 1534 339.24 MB

113.62.190.11 827 198.39 MB

222.139.215.198 744 1.67 GB

219.151.40.181 717 3.68 MB

123.56.168.170 686 3.23 MB

182.92.120.219 681 3.23 MB

39.108.40.9 681 101 KB

39.155.141.16 615 1.81 GB

81.69.152.26 611 3.35 MB

103.20.128.98 591 1.05 MB

39.105.207.62 578 1.09 MB

60.191.80.15 577 824.24 MB

Server time : Fri Nov 03 10:16:52 NPT 2023


12.High-risk applications
APPLICATION/PROTO:PORT RISK HITS BYTES

Netease WebMail 4 548 824.19 MB

Manual Proxy Surfing 4 34 104.75 KB

ZIP File Download 4 1 606.44 KB

Server time : Fri Nov 03 10:16:52 NPT 2023


13.High-risk application users
USER NAME APPLICATION COUNT HITS BYTES

Unidentified 3 583 824.88 MB

Server time : Fri Nov 03 10:16:52 NPT 2023


14.Hosts - high-risk applications
HOST APPLICATION COUNT HITS BYTES

192.168.0.88 1 57 114.02 MB

192.168.0.70 1 41 18.71 MB

192.168.0.68 1 34 47.64 MB

192.168.0.149 1 30 10.22 MB

192.168.0.158 1 30 7.29 MB

192.168.0.112 1 28 47.75 MB

192.168.0.247 1 27 10.29 MB

192.168.0.154 1 24 99.25 MB

192.168.0.228 1 22 81.38 KB

192.168.0.238 1 22 3.13 MB

192.168.0.60 1 21 3.81 MB

192.168.0.188 1 19 4.98 MB

192.168.0.119 1 18 4.28 MB

192.168.0.215 1 17 5.58 MB

192.168.0.126 2 17 2.8 MB

192.168.0.187 1 17 144 MB

192.168.0.122 1 16 134.17 MB

192.168.0.120 1 15 1.65 MB

192.168.0.153 1 13 20.87 MB

192.168.0.123 1 12 572.8 KB

192.168.0.130 1 11 671.26 KB

192.168.0.107 1 11 8.92 MB

192.168.0.129 1 11 7.15 MB

192.168.0.184 1 8 2.4 MB

192.168.0.98 1 7 3.27 MB

Server time : Fri Nov 03 10:16:52 NPT 2023

You might also like