Skip to main content

Quick Start Guide to Reports

Published on:
.
2 min read

The Reports section provides centralized visibility into network activity, security events, application usage, and Zero Trust Network traffic across your Zenconsole organization. From this workspace, you can monitor overall network health, investigate security events, and analyze traffic at both the organization and individual gateway levels.

After deploying your gateways and endpoints through Global Deployments, you can use the Reports section to monitor network activity, analyze traffic patterns, investigate security events, and review the effectiveness of your security policies.

The Reports workspace is organized into two primary reporting areas: Centralized Reports and Gateway Reports.

Centralized Reports

Centralized Reports aggregate reporting data from all managed gateways and endpoints within your organization.

Figure 1. Centralized Reports View

This view provides organization-wide visibility into network communications, detected threats, blocked traffic, web activity, DNS queries, TLS activity, and Zero Trust Network traffic. Interactive charts and summary widgets help administrators identify trends, investigate security events, and understand user and device activity across the entire environment.

Selecting a report view such as Connections, Threats, Blocks, Web, DNS, TLS, or Zero Trust Networks updates the dashboard to display information relevant to that category.

Gateway Reports

While Centralized Reports provide an organization-wide perspective, Gateway Reports focus on the activity processed by an individual gateway.

Figure 2. Gateway Reports View

Selecting a gateway displays gateway-specific reporting information, allowing you to investigate traffic patterns, security events, application usage, DNS activity, TLS communications, and other operational metrics for that deployment. Gateway Reports are particularly useful when troubleshooting issues or analyzing activity within a specific network location.

The gateway information bar also provides operational details such as the gateway name, platform, software version, deployment mode, Packet Engine status, and Bypass status, helping administrators verify the gateway's operational state before analyzing report data.

Customizing Report Views

Both Centralized Reports and Gateway Reports provide a common reporting toolbar that allows you to customize how report data is displayed. Using the available reporting controls, you can adjust the reporting period, apply filters, select different reporting metrics, and tailor the displayed information to suit your analysis.

These controls allow you to focus on specific time periods, filter report data, and customize report views based on your operational requirements.

Analyzing Report Data

Reports are designed to support both high-level monitoring and detailed investigation.

Interactive charts, summary widgets, and filtering capabilities allow you to quickly identify unusual activity, investigate security events, and better understand network behavior across your organization or within an individual gateway.

For detailed information about available report views, filtering options, and reporting features, refer to the Centralized Reports and Gateway Reports documentation.