Use the Dashboard
Dashboardtab widgets show general firewall information, such as the software version, the operational status of each interface, resource utilization, and up to 10 of the most recent entries in the threat, configuration, and system logs. All of the available widgets are displayed by default, but each administrator can remove and add individual widgets, as needed. Click the refresh icon to update the dashboard or an individual widget. To change the automatic refresh interval, select an interval from the drop-down (
5 mins, or
Manual). To add a widget to the dashboard, click the widget drop-down, select a category and then the widget name. To delete a widget, click in the title bar. The following table describes the dashboard widgets.
Displays the applications with the most sessions. The block size indicates the relative number of sessions (mouse-over the block to view the number), and the color indicates the security risk—from green (lowest) to red (highest). Click an application to view its application profile.
Top High Risk Applications
Similar to Top Applications, except that it displays the highest-risk applications with the most sessions.
Displays the firewall name, model, PAN-OS software version, the application, threat, and URL filtering definition versions, the current date and time, and the length of time since the last restart.
Indicates whether each interface is up (green), down (red), or in an unknown state (gray).
Displays the threat ID, application, and date and time for the last 10 entries in the Threat log. The threat ID is a malware description or URL that violates the URL filtering profile.
Displays the administrator username, client (Web or CLI), and date and time for the last 10 entries in the Configuration log.
Data Filtering Logs
Displays the description and date and time for the last 60 minutes in the Data Filtering log.
URL Filtering Logs
Displays the description and date and time for the last 60 minutes in the URL Filtering log.
Displays the description and date and time for the last 10 entries in the System log.
Config installedentry indicates configuration changes were committed successfully.
Displays the Management CPU usage, Data Plane usage, and the Session Count, which displays the number of sessions established through the firewall.
Logged In Admins
Displays the source IP address, session type (Web or CLI), and session start time for each administrator who is currently logged in.
ACC Risk Factor
Displays the average risk factor (1 to 5) for the network traffic processed over the past week. Higher values indicate higher risk.
Shows configuration locks taken by administrators.