Alerts

PureInsight Alerts periodically searches the captured packets based on filter criteria. When it finds packets that match, it populates the alerts graph and also an alert entry in the alerts column where you can download a PCAP file that contains the matching packets. Alerts are useful if you want PureInsight to keep searching for unusual packets or to see trends over a longer period of time.

Open

Key Features:

• Dynamic Alert Generation: Multiple alert conditions can be set by the user, allowing for a flexible and customizable alert system.

• Real-time Monitoring: Traffic is monitored in semi-real-time, enabling quick detection and response to unusual or suspicious packets.

• PCAP File Download: When an alert condition is satisfied, the corresponding portion of traffic is extracted as a PCAP file. This file can be downloaded for in-depth analysis.

Usage Scenarios:

• Continuous Monitoring: Alerts are useful for keeping PureInsight actively searching for unusual packets, providing ongoing security monitoring.

• Trend Analysis: Over a longer period, alerts help users identify trends in network behavior, enabling a proactive approach to network management.