The Overall tab provides overall statistics for all users within the local network (including anonymous, i.e. unauthenticated users) for the selected accounting period.
The first chart provides information on the volume of data transferred in individual subperiods of the selected period. The table next to the chart informs on data volumes transferred in the entire selected period (total and for both directions as well). Simply hover a column in the chart with the mouse pointer to view volume of data transferred in the corresponding subperiod. Click on a column in the chart to switch to the information on the particular subperiod only[2] (for details, see chapter 3.2 Accounting period.
The subperiod length depends on the current period:
day — the chart shows traffic by hours,
week or month— the chart shows traffic by days.
For custom periods:
up to 2 days — the chart shows traffic by hours,
up to 5 weeks — the chart shows traffic by days,
up to 6 months — the chart shows traffic by weeks,
more than 6 months — the chart shows traffic by months,
The chart of the most frequented websites shows top five domains (second level) by their visit rate. The number in the chart refers to number of visits of all web pages of the particular domain in the selected accounting period.
Note: WinRoute “can see” only separate HTTP requests. To count number of visited pages (i.e. to recognize which requests were sent within a single visit), a special heuristic algorithm is used. The information, therefore, cannot be precise, though the approximation is very good.
This chart shows top five web categories requested in the selected period sorted by the ISS OrangeWeb Filter module. The number in the chart refers to total number of HTTP requests included in the particular category. For technical reasons, it is not possible to recognize whether the number includes requests to a single page or to multiple pages. Therefore, number of requests is usually much higher than number of visited websites in the previous chart.
Top five users, i.e. users with the greatest volume of data transferred in the selected accounting period.
The chart includes individual users and total volume of transferred data.
The chart shows part of the most active users in the total volume of transferred data in the selected period. Hover a user's name in the chart by the mouse pointer to see volume of data transferred by the user, both in total numbers and both directions (download, upload).
Click on a user's name in the chart or in the table to switch to the Individual tab (see chapter 3.4 User statistics) where statistics for the particular user are shown.
These charts and tables provide useful information on which users use the Internet connection the most and make it possible to set necessary limits and quotas.
Note:
Total volume of data transferred by a particular user is a summary of data transferred by the user from all hosts from which they have connected to the firewall in the selected period.
Data transferred by unauthenticated users is summed and accounted as the not logged in user. However, this information is not very useful and, therefore, it is recommended to set firewall to always require authentication.
Method of username displaying in the table can be set in the WinRoute configuration. Only full names are shown in charts (or usernames if the full name is not defined in the account of the particular user).
The chart of used protocols shows part of individual protocols (i.e. their classes) in the total volume of data transferred in the selected accounting period. Hover a protocol name with the mouse pointer to see volume of data transferred by the particular protocol.
Such information might, for example, help recognize type of traffic between the local network and the Internet. If the internet line is overloaded, it is possible to use the information to set necessary limits and restrictions (traffic rules, URL rules, etc.).
For better reference, WinRoute sorts protocols to predefined classes:
Web — HTTP and HTTPS protocols and any other traffic served by the HTTP protocol inspector,
E-mail — SMTP, IMAP, POP3 protocols (and their secured versions),
FTP — FTP protocol (including traffic over proxy server),
Multimedia — protocols enabling real-time transmission of sound and video files (e.g. RTSP, MMS, RealAudio),
P2P — file-sharing protocols (peer-to-peer — e.g. DirectConnect, BitTorrent, eDonkey, etc.). The traffic is accounted only if WinRoute detects that it is traffic within a P2P network.
VPN — connection to remote private networks (e.g. Kerio VPN, Microsoft PPTP, etc.).
Remote Access — “terminal” access to remote hosts (e.g. Remote desktop, VNC, Telnet or SSH).
Instant Messaging) — online communication via services such as ICQ, MSN Messenger, Yahoo! Messenger, etc.
Other — any traffic which does not belong to any of the previously described categories.
Note:
The No data available alert informs that no data is available in WinRoute's database for the selected statistics and accounting period. This status can be caused by various different reasons — e.g. that the selected user account did not exist in the particular time period, the user did not login to the firewall within the period, etc.
WinRoute tries to optimize size of the statistic database and volume of processed data. The greatest volume of data is generated by statistics of visited websites. For this reason, daily statistics of visited websites are kept only for the last 40 days. Weekly and monthly statistics are available for the entire data storage period as set in the configuration (2 years by default).
If a period is selected for which no data is available, WinRoute offers another period where data for the requested statistics might be found.
[2] It is not possible to switch to a selected subperiod if the traffic is displayed by hours. The shortest accounting period to be selected is one day.