Log Viewer tab

View only the last n alertsAlerts listEntry DetailAdd to Zone/More InfoClear List

Click the numbers to learn about specific controls, or read an introduction.

 

 

Log Viewer tab

The Log Viewer tab lists recent alerts. You can use each alert entry to:

Related Topics

Back to top

View only the last n alerts

Select the number of alerts (starting with the most recent) to display in the alerts list.

Related Topics

Back to top

Alerts list

The alerts list shows Firewall alerts, Program alerts, and other alerts that have been recorded in the ZoneAlarm Pro log.

You can sort the list by any field by clicking the column header. The arrow ( ) next to the header name indicates the sort order. Click the same header again to reverse the sort order.

Alert list fields

Field

Information

Rating

Each alert is high-rated or medium-rated. High-rated alerts are those likely to have been caused by hacker activity. Medium-rated alerts are likely to have been caused by unwanted but harmless network traffic.

Date/Time

The date and time the alert occurred.

Type

The type of alert: Firewall, Program, or Lock Enabled.

Protocol

The communications protocol used by the traffic that caused the alert.

Program

The name of the program attempting to send or receive data. (Applies only to Program alerts).

Source IP

The IP address of the computer that sent the traffic that ZoneAlarm Pro blocked.

Destination IP

The address of the computer the blocked traffic was sent to.

Direction

The direction of the blocked traffic. "Incoming" means the traffic was sent to your computer. "Outgoing" means the traffic was sent from your computer.

Action Taken

How the traffic was handled by ZoneAlarm Pro.

Count

The number of times an alert of the same type, with the same source, destination, and protocol, occurred during a single session.

Source DNS

The domain name of the computer that sent the traffic that caused the alert.

Destination DNS

The domain name of the intended addressee of the traffic that caused the alert.

Adding the source of the alert to the Trusted Zone

If you determine that you received a firewall alert because ZoneAlarm Pro blocked traffic from a computer that you want to share resources with, you can add that computer to the Trusted Zone directly from the alerts list. Follow these steps:

  1. Right-click the source IP address you want to add.
  2. Choose Add to Zone and Trusted from the shortcut menu.
Submitting the alert to Zone Labs AlertAdvisor

To have Zone Labs AlertAdvisor analyze an alert for you, follow these steps:

  1. Right click anywhere in the alert record you want to submit.
  2. Choose More Info from the shortcut menu.

Related Topics

Back to top

Entry Detail box

The Entry Detail box displays details of the alert currently selected in the alerts list. Entry detail fields are the same as those in the alerts list, but displayed in an easily readable format.

Related Topics

Back to top

Add to Zone / More Info

Click Add to Zone to add the Source IP of the selected alert to either the Blocked Zone or the Trusted Zone.

Click More Info to have Zone Labs' Alert Advisor analyze the selected alert, and provide advice on any action you may need to take.

Related Topics

Back to top

Clear List

Click Clear List to clear all entries from the Log Viewer. You can still view all of these entries in the ZoneAlarm Pro log. How?

 

Related Topics

Back to top

Related Topics

Viewing the ZoneAlarm Pro log
Reading log entries