You can use the ACC, and the URL filtering reports and
logs that are generated on the firewall to track user activity.
For a quick view of the most common categories users access in
your environment, check the
Most widgets in the Network Activity tab, allows you to sort on
URLs. For example, in the Application Usage widget, you can see
that the networking category is the most accessed category, followed
by encrypted tunnel, and ssl. You can also view the list of
From the ACC, you can directly
Jump to the Logs
you can navigate to
view the URL filtering logs. The following bullet points show examples
of the URL filtering logs ().
—In this log, the category is shopping
and the action is alert.
—In this log, the category malware was set
to block, so the action is block-url and the user will see a response
page indicating that the website was blocked.
Alert log on encrypted website
—In this example, the
category is social-networking and the application is facebook-base,
which is required to access the Facebook website and other Facebook
applications. Because faceboook.com is always encrypted using SSL,
the traffic was decrypted by the firewall, which allows the website
to be recognized and controlled if needed.
You can also add several other columns to your URL Filtering
log view, such as: to and from zone, content type, and whether or
not a packet capture was performed. To modify what columns to display,
click the down arrow in any column and select the attribute to display.
To view the complete log details and/or request a category change
for the given URL that was accessed, click the log details icon
in the first column of the log.
To generate a predefined URL filtering reports on URL categories,
URL users, Websites accessed, Blocked categories, and more, select
URL Filtering Reports
select one of the reports. The reports are based on a 24-hour period
and the day is selected by choosing a day in the calendar section.
You can also export the report to PDF, CSV, or XML.