67-33
User Guide for Cisco Security Manager 4.4
OL-28826-01
Chapter 67 Managing Reports
Troubleshooting Report Manager
Solution: The top attackers, top victims, and top signatures predefined reports include criteria for
signature, victim IP address, and attacker IP address. However, you cannot configure all three criteria in
a predefined report. Instead, you can configure the criteria on which the report is based (for example,
victim IP address for the top victims report) plus one, and only one, of the remaining values. Note that
this limitation does not apply to the other criteria, such as Blocked and Top.
Problem: You cannot see data in certain Firewall predefined reports after specifying values for each of
service, source IP, and destination IP.
Solution: The top destinations, top services, and top sources predefined reports include criteria for
service, source IP address, and destination IP address. However, you cannot configure all three criteria
in a predefined report. Instead, you can configure the criteria on which the report is based (for example,
service for the top services report) plus one, and only one, of the remaining values. Note that this
limitation does not apply to the other criteria, such as Permit/Deny and Top.
Problem: Statistics for VPN reports are not available.
Solution: VPN statistics are partially obtained directly from the device rather than from events stored in
the event data storage location. To obtain the statistics, Report Manager must be able to log into the
device and use show commands. Ensure that the device properties for your VPN devices have the correct
credentials for logging in.
Problem: Scheduled reports are not getting sent to recipients.
Solution: Ensure that the SMTP server is configured correctly and that a valid source e-mail address is
configured for Security Manager. For more information, see Configuring an SMTP Server and Default
Addresses for E-Mail Notifications, page 1-25.