The Center statistics view provides data about the state of the Center CPU, RAM, disk, network interfaces bandwidth and database.

Note	Most data presented below evolve as you select a different period of time.

At the top of the page, you will find general information about the Center (the software version, the length of time that it has been operating (i.e. uptime), the Center system date and whether DHCP is enabled or not).

The button on the right generates a diagnostic file about the Center that is sometimes requested by the Cisco product support in case of trouble.

System health:

The system health gives you the state of the Center CPU, RAM and disk usage.

Usages (i.e. minimum, maximum and average) are indicated for each of these system resources while the absolute value is shown in a tooltip if you mouse over the line chart.

Below, you have the percentage of the system's current usage. Also, there is an indicative hardware score which is useful to Cisco product support.

The Compute Scores button initiates a new performance measure to compute a new score.

Network interfaces bandwidth:

The line charts represent the Administration and Collection network interfaces bandwidth with the number of bytes received and sent by the Center per second.

For example, the Collection network interface activity lets you see the amount of data exchanged between the Center and the sensors.

Disk I/O:

The line chart represents the Center hard disk usage with the number of bytes read and written per second.

Database:

This section describes the database state by showing cards with the number of flows, components and variables that have been detected by Cisco Cyber Vision. Flows distribution is shown in a pie chart.

Data is updated each time you access the Center statistics view (the latest count is indicated on top of the database section). However, the Get Count button actualizes the database performance to the current time.

The flows card indicates the total number of flows (i.e. broadcast, multicast and unicast which are stored in the database) detected by Cisco Cyber Vision. If you mouse over the card, you will get the number of activities and the flows evolution tendency. This information enables you to anticipate how the system load might be affected by flows in the future.

The variables card indicates the total number of variables detected by Cisco Cyber Vision. This indicator is important because an overload of variables could impact the Cisco Cyber Vision performances. If you mouse over the card you will get the number of process variables and the number of system variables.

• Process variables are the number of variables used by PLCs' software. Process variables are visible in the Monitor mode of the Cisco Cyber Vision GUI.

• System variables are the number of variables necessary to PLCs' proper operation. System variables are stored in the Cisco Cyber Vision database.

  

The flows distribution pie chart indicates the distribution of broadcast, multicast and unicast flows stored in the database. Mouse over the chart to see the absolute number of flows per flow type.

The sensors statistics view provides data about the CPU, RAM, disk, network interfaces bandwidth and packets captured for each sensor enrolled in Cisco Cyber Vision.

Note	Most data presented below evolve as you select a different period of time.

On the left you have a list of the sensors (only one sensor is represented here). Click on a sensor name to access its statistics.

On top of the sensors statistics view you will find general information about the sensor: its status (i.e. Connected), its serial number, its IP and MAC addresses, its firmware version, the capture mode set and the time it has been operating (i.e. uptime).

The button on the right generates a diagnostic file about the sensor that is sometimes requested by the Cisco product support in case of trouble.

System health:

The system health gives you the state of the sensor CPU, RAM and disk usage.

Usages (i.e. minimum, maximum and average) are indicated for each of these system resources while the absolute value is shown in a tooltip if you mouse over te line chart.

Below, you have the percentage of the system current usage. There is also an indicative hardware score which is useful to Cisco product support.

Packets captured:

This line chart represents the number of packets that the sensor captures on the Industrial network interface (in bytes per second). Packets dropped are also represented but the value should stand to zero. If the dropped line shows activity then the sensor is overloaded and is not capturing traffic.

Network interfaces bandwidth:

The line charts represent the Collection and the Industrial network interfaces bandwidth with the number of bytes received and sent by the Center per second.

• The Collection Network interface activity chart lets you see the amount of data exchanged between the Center and the sensors.

• The Industrial ones lets you see the amount of data captured by the sensor on the industrial network through each ports couple.

  Data sent to the industrial network is also represented but value should stand to zero. If the transmitted line shows activity then the sensor is not passive anymore. If this situation happens, please contact Cisco support immediately.

Disk I/O:

The line chart represents the sensor hard disk usage with the number of bytes read and written per second.