The Traffic Flow condition alerts you when traffic flow is not as you expect. Following are examples of when the Traffic Flow condition is useful.
Receives Data Example
Receives Data sets the threshold for inbound communication to zero. If the device receives a message, an alert is triggered.
A prisoner monitoring device (for example, an ankle bracelet) should never be receiving communications. This device should only send communications indicating that the prisoner has not left the restricted area.
Suddenly, the device begins receiving communications. This could indicate that an individual is attempting to disable the device, allowing the prisoner to escape house arrest. The monitoring company needs to receive an alert so action can be taken. If the Receives Data condition is set, an alert is triggered.
Sends Data Example
Sends Data sets the threshold for outbound communication to zero. If the device sends a message, an alert is triggered.
A medical device has not been uploading information into a patient's health portal as expected. Several hours have passed without communication. The patient has called the health care company who is running diagnostics on the device. When the device begins communicating again, the health care company needs to be alerted.
Setting the Traffic Flow Condition
- Select Rules from the Dashboard navigator to open the Rules page.
- Click Create Rule.
- Enter a name for the new Rule.
- Select the Severity level (Low, Medium, High, or Critical). The default is Medium.
- Click Add Conditions.
- Click Traffic Flow and click Continue.
- Select Receives Data or Sends Data. The default is Receives Data.
- Click Continue.
- Click Continue again.
- Verify that this is the selection you intended and click Save. (If you need to make changes, click Back to return and change your selection.)
Once Conditions are saved, they are displayed in a list in the Conditions section of the Create a Rule page.
Several Condition types are available. Adding at least one Condition is required.
Note: Duplicates of the same Condition within a Rule are not allowed. Refer to Following Rule Condition Restrictions for a list of all restrictions.
You can be notified when an alert is triggered by selecting Add Action and entering one or more e-mail addresses. If you need help, refer to Receiving e-mail notifications about Alerts.
When the Condition and e-mail addresses have been added, click Create Rule.
- SecurityPro checks whether a name for the Rule has been entered . If a name has not been entered, the Rule is not created and the Rule name field is highlighted in red. Enter a Rule name and click Create Rule to create the Rule.
- If a Severity Level for this Rule has not been selected, it defaults to Medium.
Once created, the new Rule is added to the list on the Rules page.
You can now assign this Rule to a Group. For help, refer to Assigning a Rule to a Group.
Important! SecurityPro only monitors your devices to notify you when your Device is not behaving as expected. It does not resolve this behavior. You must take action to resolve your Device’s behavior and then acknowledge within SecurityPro that you have done so.