Prophaze
  • What is Prophaze AppSec Platform? How it works?
    • Performance
    • SSL Termination
    • Modes of Operation
  • Prophaze AppSec Best Practices
  • Application Onboarding
    • Account Creation
    • Deployment Models
      • Cloud
      • On-Premise
      • Kubernetes Deployment
    • Multi-Cloud Setup
  • DASHBOARD UI OVERVIEW
    • Dashboard
    • Traffic Analysis
    • API Security
    • Attack Analytics
    • DDOS Attacks
    • Rules Page
    • Bot Mitigation
    • Anomaly Detection
    • Reporting
    • Attack Types
    • Incidents
    • AppSec Toggle Mode
    • SSL Certificate
  • HTTP Support
    • Encoding Types
    • Protocol Validation
  • Protection Use Cases
    • HTTP Protocol Violation
    • Protocol Anomalies
    • Bot Detection
    • Injection Prevention
    • HTTP Request Smuggling
    • HTTP Response Splitting
    • XSS Prevention
    • LFI and RFI
    • Session Fixation
    • SQL Injection Prevention
    • Layer 7 Dos Attack Prevention
    • PHP Application Protection
  • Detection Techniques
    • Normalization
    • Negative Security Model
    • Signature and Rule Database
  • FAQ
    • Onboarding Process
    • Dashboard Terminology
    • Attack Section
    • Rule Set
    • Traffic 360: General Traffic Logs
    • ML Based Bot Mitigation
    • Generating Reports
    • Anomaly Detection
    • General
  • Software Updates
    • Release Notes v2.3.0
  • Release Notes v2.4.0
  • Release Notes v2.5.0
  • API Security Dashboard
    • API Security Features of Prophaze
    • API security scoring
    • Host-Based API Quality Score
    • How to Enable API Security and Dashboard
    • API Security Section
  • CVE
    • CVE-2024
    • CVE-2023
    • CVE-2022
    • CVE-2021
    • CVE-2020
    • CVE-2019
    • CVE-2018
    • CVE-2017
    • CVE-2012
    • CVE-2011
    • CVE-2009
    • CVE-2008
    • CVE-2001
Powered by GitBook
On this page

Was this helpful?

  1. FAQ

Traffic 360: General Traffic Logs

Traffic Analytics offers a more detailed view of traffic for a specific IP address. This might include additional information and functionalities for analyzing visitor behavior and potential security risks.

User Agent:

What is the User Agent field?

The User Agent is a string sent by the visitor's browser that identifies the browser type, operating system, and other details.

General Information:

What information is shown here?

This section provides details about the visitor associated with the currently selected traffic event. It includes:

  • IP Address: Visitor's IP address.

  • Organization: Likely the organization associated with the IP address (based on IP geolocation databases).

  • Country: Visitor's estimated country based on the IP address.

What actions can I take from this section?

You might be able to:

  • Block IP: Block future traffic from this specific IP address. (Use with caution)

  • Allow IP: Allow traffic from this specific IP address even if it triggers security rules.

  • Block Country: Block future traffic from visitors in this country. (Use with extreme caution as it can impact legitimate users)

Allow URL: Allow access to a specific website resource (URL) even if it's normally blocked by security rules.

Source IP and Destination IP:

What is the difference between Source IP and Destination IP?
  • Source IP: The IP address of the visitor trying to access your website.

  • Destination IP: The IP address of your web server where the website content resides.

Referrer URL:

What does the Referrer URL tell you?

The Referrer URL indicates the website (if any) that directed the visitor to your site. This can be helpful for understanding how users are finding your website.

Traffic Analytics:

What is Traffic Analytics?

Traffic Analytics offers a more detailed view of traffic for a specific IP address. This might include additional information and functionalities for analyzing visitor behavior and potential security risks.

Log Retention and Management:

For how long are traffic logs stored?

Traffic logs readily available will be 30 days, and more than 30 days would be archived for a period of one year.

What are the options for exporting or archiving traffic logs?

The solution offers functionalities to export logs to a central repository or archive them for future reference (e.g., CSV, SIEM integration).

PreviousRule SetNextML Based Bot Mitigation

Last updated 8 months ago

Was this helpful?