PureInsight Alerts periodically searches the captured packets based on filter crite- riacriteria. When it finds packets that match, it populates the alerts graph and also an alert entry in the alerts column where you can download a pcap PCAP file that contains the matching packets. Alerts are useful if you want PureInsight to keep searching for unusual packets or to see trends over a longer period of time.
...
Key Features:
Dynamic Alert Generation: Multiple alert conditions can be set by the user, allowing for a flexible and customizable alert system.
Real-time Monitoring: Traffic is monitored in semi-real-time, enabling quick detection and response to unusual or suspicious packets.
PCAP File Download: When an alert condition is satisfied, the corresponding portion of traffic is extracted as a PCAP file. This file can be downloaded for in-depth analysis.
Usage Scenarios:
Continuous Monitoring: Alerts are useful for keeping PureInsight actively searching for unusual packets, providing ongoing security monitoring.
Trend Analysis: Over a longer period, alerts help users identify trends in network behavior, enabling a proactive approach to network management.