Displays the number of protected zones of a tenant. The system operators can view the zones associated with the IP addresses and services, detection and mitigation policies applied, and operational mode and status.

To know more details of Protected Zones, see Protected Objects.

Displays the number of all active zone incidents of a tenant. The operators can view the zone incidents associated with the services, attack types, when the incidents happened, and so on.

To know more details of Active zone incidents, see DDoS Incidents.

Displays the status of all services under protection. The operators can get an idea of how the threat situation is in the current organization by highlighting services that require operator action to proceed to mitigation, services currently undergoing attack mitigation, and services that are safe from DDoS attacks.

To analyze a certain service, the operators can include or exclude a service using the service legends.

Displays a stacked chart that represents the aggregate traffic that were allowed to come in or dropped because of suspicion of being bad traffic for all the mitigator devices. The operator can analyze the traffic by packets per second (PPS) and bits per second (BPS) rates.

Displays a breakdown of DDoS attacks by their types based on the rate of occurrence. Operators can identify patterns in recent attacks without drilling down into the incidents. Hence, they can make defensive policies against recurring attack types and malicious activities to fortify their network systems.

Displays the top sources of traffic across all services under attack occurring in all countries of the world. The operators can identify where the most offensive sources happen and can create geo-location-based policies. This analysis is highly useful for those organizations, whose network systems are spread across many geo-locations.

Displays a ranking of zones based on the volume of traffic received within a certain time window. A zone that receives an uncharacteristically high volume of traffic requires closer scrutiny to identify whether the zone is under an attack that might not have been detected due to detector misconfiguration. This information is useful in analyzing triage efforts.

Displays a ranking of zones based on the volume of traffic dropped by DDoS countermeasures within a certain time window. A zone that experiences a high volume of packet or byte drops usually experiences an intense attack and may require closer attention to gather information and possibly forensic evidence. This information is useful in analyzing triage efforts.