Fortinet white logo
Fortinet white logo

Administration Guide

Adding FortiView monitors

Adding FortiView monitors

Non-core FortiView monitors are available in the Add monitor pane. You can add a FortiView widget to a dashboard or the tree menu as a monitor.

To add a monitor to the tree menu:
  1. In the tree menu, under the monitors section, click Add Monitor (+).

  2. Click Add next to a monitor. You can use the Search field to search for a specific monitor.

  3. In the FortiGate area, select All FortiGates or Specify to select a FortiGate device in the security fabric.

  4. (Optional) In the Data Source area, select Specify and select a source device.

  5. From the Time Period dropdown, select the time period. This option is not available in all monitors.

  6. From the Sort By dropdown, select the sorting method.

  7. Click Add Monitor. The monitor is added to the tree menu.

Monitors by category

Usage is based on the default settings. The monitors may be customized further and sorted by other fields.

LANDMARK

Widget

Sort by

Usage

Applications

Bytes/Sessions/Bandwidth/Packets

Displays top applications and drilldown by application.

Application Bandwidth

Bytes/Bandwidth

Displays bandwidth for top applications and drilldown by application.

Cloud Applications

Bytes/Sessions/Files(Up/Down)

Displays top cloud applications and drilldown by application.

Cloud Users

Bytes/Sessions/Files(Up/Down)

Displays top cloud users and drilldown by cloud user.

Compromised Hosts

Verdict

Displays compromised hosts and drilldown by source.

Countries/Regions

Bytes/Sessions/Bandwidth/Packets

Displays top countries/regions and drilldown by countries/regions.

Destination Firewall Objects

Bytes/Sessions/Bandwidth/Packets

Displays top destination firewall objects and drilldown by destination objects.

Destination Owners

Bytes/Sessions/Bandwidth/Packets

Displays top destination owners and drilldown by destination.

Destinations

Bytes/Sessions/Bandwidth/Packets

Displays top destinations and drilldown by destination.

Search Phrases

Count

Displays top search phrases and drilldown by search phrase.

Source Firewall Objects

Bytes/Sessions/Bandwidth/Packets

Displays top search phrases and drilldown by source object.

Sources

Bytes/Sessions/Bandwidth/Packets

Displays top sources and drilldown by source.

Threats

Threat level/Threat Score/Sessions

Displays top threats and drilldown by threat.

Traffic Shaping

Dropped Bytes/Bytes/Sessions/Bandwidth/Packets

Displays top traffic shaping and drilldown by shaper.

Web Categories

Bytes/Sessions/Bandwidth/Packets

Displays top web categories and drilldown by category.

Web Sites

Bytes/Sessions/Bandwidth/Packets

Displays top web sites and drilldown by domain.

WiFi Clients

Bytes/Sessions

Displays top WiFi clients and drilldown by source.

WAN

Widget

Sort by

Usage

Servers

Bytes/Sessions/Bandwidth/Packets

Displays top servers and drilldown by server address.

Sources

Bytes/Sessions/Bandwidth/Packets

Displays top sources and drilldown by device.

Threats

Threat Level/Threat Score/Sessions

Displays top threats and drilldown by threat.

All Segments

Widget

Sort by

Usage

Admin Logins

Configuration Changes/Logins/Failed Logins

Displays top admin logins by username.

Destination Interfaces

Bytes/Sessions/Bandwidth/Packets

Displays top destination interfaces by destination interface.

Endpoint Vulnerabilities

Severity

Displays top endpoint vulnerabilities by vulnerability name.

Failed Authentication

Failed Attempts

Displays top failed authentications by failed authentication source.

FortiSandbox Files

Submitted

Displays top FortiSandbox files by file name.

Interface Pairs

Bytes/Sessions/Bandwidth/Packets

Displays top interface pairs by source interface.

Policies

Bytes/Sessions/Bandwidth/Packets

Displays top policies by policy.

Source Interfaces

Bytes/Sessions/Bandwidth/Packets

Displays top source interfaces by source interface.

System Events

Level/Events

Displays top system events by event name.

VPN

Connections/Bytes

Displays top VPN connections by user.

Vulnerable Endpoint Devices

Detected Vulnerabilities

Displays top vulnerable endpoint devices by device.

Note

A maximum of 25 interfaces can be monitored at one time on a device.

Adding FortiView monitors

Adding FortiView monitors

Non-core FortiView monitors are available in the Add monitor pane. You can add a FortiView widget to a dashboard or the tree menu as a monitor.

To add a monitor to the tree menu:
  1. In the tree menu, under the monitors section, click Add Monitor (+).

  2. Click Add next to a monitor. You can use the Search field to search for a specific monitor.

  3. In the FortiGate area, select All FortiGates or Specify to select a FortiGate device in the security fabric.

  4. (Optional) In the Data Source area, select Specify and select a source device.

  5. From the Time Period dropdown, select the time period. This option is not available in all monitors.

  6. From the Sort By dropdown, select the sorting method.

  7. Click Add Monitor. The monitor is added to the tree menu.

Monitors by category

Usage is based on the default settings. The monitors may be customized further and sorted by other fields.

LANDMARK

Widget

Sort by

Usage

Applications

Bytes/Sessions/Bandwidth/Packets

Displays top applications and drilldown by application.

Application Bandwidth

Bytes/Bandwidth

Displays bandwidth for top applications and drilldown by application.

Cloud Applications

Bytes/Sessions/Files(Up/Down)

Displays top cloud applications and drilldown by application.

Cloud Users

Bytes/Sessions/Files(Up/Down)

Displays top cloud users and drilldown by cloud user.

Compromised Hosts

Verdict

Displays compromised hosts and drilldown by source.

Countries/Regions

Bytes/Sessions/Bandwidth/Packets

Displays top countries/regions and drilldown by countries/regions.

Destination Firewall Objects

Bytes/Sessions/Bandwidth/Packets

Displays top destination firewall objects and drilldown by destination objects.

Destination Owners

Bytes/Sessions/Bandwidth/Packets

Displays top destination owners and drilldown by destination.

Destinations

Bytes/Sessions/Bandwidth/Packets

Displays top destinations and drilldown by destination.

Search Phrases

Count

Displays top search phrases and drilldown by search phrase.

Source Firewall Objects

Bytes/Sessions/Bandwidth/Packets

Displays top search phrases and drilldown by source object.

Sources

Bytes/Sessions/Bandwidth/Packets

Displays top sources and drilldown by source.

Threats

Threat level/Threat Score/Sessions

Displays top threats and drilldown by threat.

Traffic Shaping

Dropped Bytes/Bytes/Sessions/Bandwidth/Packets

Displays top traffic shaping and drilldown by shaper.

Web Categories

Bytes/Sessions/Bandwidth/Packets

Displays top web categories and drilldown by category.

Web Sites

Bytes/Sessions/Bandwidth/Packets

Displays top web sites and drilldown by domain.

WiFi Clients

Bytes/Sessions

Displays top WiFi clients and drilldown by source.

WAN

Widget

Sort by

Usage

Servers

Bytes/Sessions/Bandwidth/Packets

Displays top servers and drilldown by server address.

Sources

Bytes/Sessions/Bandwidth/Packets

Displays top sources and drilldown by device.

Threats

Threat Level/Threat Score/Sessions

Displays top threats and drilldown by threat.

All Segments

Widget

Sort by

Usage

Admin Logins

Configuration Changes/Logins/Failed Logins

Displays top admin logins by username.

Destination Interfaces

Bytes/Sessions/Bandwidth/Packets

Displays top destination interfaces by destination interface.

Endpoint Vulnerabilities

Severity

Displays top endpoint vulnerabilities by vulnerability name.

Failed Authentication

Failed Attempts

Displays top failed authentications by failed authentication source.

FortiSandbox Files

Submitted

Displays top FortiSandbox files by file name.

Interface Pairs

Bytes/Sessions/Bandwidth/Packets

Displays top interface pairs by source interface.

Policies

Bytes/Sessions/Bandwidth/Packets

Displays top policies by policy.

Source Interfaces

Bytes/Sessions/Bandwidth/Packets

Displays top source interfaces by source interface.

System Events

Level/Events

Displays top system events by event name.

VPN

Connections/Bytes

Displays top VPN connections by user.

Vulnerable Endpoint Devices

Detected Vulnerabilities

Displays top vulnerable endpoint devices by device.

Note

A maximum of 25 interfaces can be monitored at one time on a device.