Related Topics
View APT Threat Information
When you configure the APT Blocker threat actions on your Firebox to send an alarm or log message for a threat action, from Traffic Monitor, you can see the log message information for the APT threats detected by APT Blocker on your device.
For more information about how to configure APT Blocker threat actions, see Configure APT Blocker.
You can also view APT Blocker threat action log messages from WatchGuard Dimension. APT Blocker reports are only available in WatchGuard Dimension. For more information, see About Dimension Reports.
APT Blocker threat information includes these details:
- File — The name of the file that included the threat.
- Threat Level — The level of the threat (High, Medium, or Low).
- Threat Summary — A summary of the conditions found in the file that caused the threat notification.
- File MD5 — The MD5 file number.
- Threat ID — The identification number assigned to the threat.
To view information about the APT Blocker threat actions on your device, from Firebox System Manager:
- Start Firebox System Manager.
- Select the Traffic Monitor tab.
- Scroll to find an APT Blocker log message.
- Right-click the APT Blocker log message.
- Select Lookup APT Information.
The APT Threat Information dialog box appears.
To view information about the APT Blocker threat actions on your device, from Fireware Web UI:
- Select Dashboard > Traffic Monitor.
The Traffic Monitor page appears. - Scroll to find an APT Blocker log message.
- Click the APT log message.
The APT Threat Information dialog box appears.
See Also
Device Log Messages (Traffic Monitor)
Configure APT Blocker Notification