Cisco Cisco Firepower Management Center 4000
4-6
FireSIGHT System User Guide
Chapter 4 Using the Context Explorer
Understanding the Context Explorer
Viewing the Operating Systems Graph
License:
FireSIGHT
The Operating Systems graph, in donut form, displays a proportional representation of operating systems
detected on hosts on your monitored network. The inner ring divides by OS name (such as
detected on hosts on your monitored network. The inner ring divides by OS name (such as
Windows
or
Linux
), while the outer ring further divides that data by specific operating system version (such as
Windows Server 2008
or
Linux 11.x
). Some closely related operating systems (such as Windows 2000,
Windows XP, and Windows Server 2003) are grouped together. Very scarce or unrecognized operating
systems are grouped under
systems are grouped under
Other
.
Note that this graph reflects all available data regardless of date and time constraints. If you change the
explorer time range, the graph does not change.
explorer time range, the graph does not change.
Hover your pointer over any part of the graph to view more detailed information. Click any part of the
graph to filter or drill down on that information.
graph to filter or drill down on that information.
This graph draws data primarily from the Hosts table.
Viewing the Traffic by Source IP Graph
License:
FireSIGHT
The Traffic by Source IP graph, in bar form, displays counts of network traffic (in kilobytes per second)
and unique connections for the top 15 most active source IP addresses on your monitored network. For
each source IP address listed, blue bars represent traffic data and red bars represent connection data.
and unique connections for the top 15 most active source IP addresses on your monitored network. For
each source IP address listed, blue bars represent traffic data and red bars represent connection data.