Analytical dashboards focus on gaining insights from a volume of data collected over time – often the past month or quarter – and use this to understand what happened, why, and what changes should be made in the future. By analyzing logs, IT security staffs can catch some suspicious symptoms and plan secure measures.

Building Bar/Column Chart

A bar chart or bar graph is a chart that presents Grouped data with rectangular bars with lengths proportional to the values that they represent. The bars can be plotted vertically or horizontally. A vertical bar chart is sometimes called a column bar chart. So, let's build an Bar/Column chart sample.

1. Go to Dashboard > Add Widget and select Bar or Column Chart icon. Screen_Shot_2019-12-02_at_11.51.27.png

2. Click next and provide required information. The panel description is as below.

Screen_Shot_2019-12-02_at_14.27.39.png

Title: The title presents the customized dashboard name
Information Source: Information Source is a source where the information will be forwarded. In Logsign, there are 4 sources such as Reports, Alerts, Captive Portal, and Logsign Event. Obviously, Reports source is the source that send information of the reports class in Logsign. Alerts is the source that related with the alert class. Captive Portal is the source of hotspot class. Logsign Event is the source of the Logsign web interface events.
Time Column: This is already specified as Time Generated. This is one of time attributes that log will be shown up on the dashboard.
Grouped Column: Grouped Column is the fiducial value indexing the series of information on a dashboard.
Grouped Column Oder Type: Grouped Column Order types is the way of order in chart presentation.
Refresh Time: Refresh time is the number of times in seconds or minutes that a display dashboard updates its information.
Query: By querying some conditions, you will be able to narrow down the result you want.
Rows Per Page: The rows will be displayed in a dashboard
Index Time: The time span from when dashboard receives new data to when the data is written to a dashboard.

3. Click Save.

Screen_Shot_2019-12-02_at_14.28.19.png

Now, you can see the result as below.

Screen_Shot_2019-12-02_at_14.31.00.png

Building Stacked Histogram Chart

Data that is arranged in columns or rows on a worksheet can be plotted in a Stacked Histogram Chart. Stacked Histogram Charts are useful for showing data changes over a period of time or for illustrating comparisons among items.

Consider using a Stacked Histogram Chart when:

You have one or more data series that you want to plot.
You want to compare the data for numerous categories side by side.

You can use a Stacked Histogram Chart type when you have categories that represent:

Ranges of values (for example, item counts).
Specific scale arrangements (for example, a Severity scale with Info, Notice, Error, Alert, Critical).
IP that are not in any specific order (for example, Source.IP, Destination.IP, or EventSource.IP).

So, let's build a Stacked Histogram Chart sample.

1. Go to Dashboard > Add Widget and select Stacked Histogram Chart icon.

Screen_Shot_2019-12-02_at_14.33.13.png

2. Click "Next" and provide required information. The panel description is as below. Basically, Stacked Histogram Chart is consisted of properties and it's count value. Therefore, selecting a proper Grouped Column is a key to present your dashboard graph.

Screen_Shot_2019-12-02_at_14.36.10.png

Title: The title presents the customized dashboard name
Information Source: Information Source is a source where the information will be forwarded. In Logsign, there are 4 sources such as Reports, Alerts, Captive Portal, and Logsign Event. Obviously, Reports source is the source that send information of the reports class in Logsign. Alerts is the source that related with the alert class. Captive Portal is the source of hotspot class. Logsign Event is the source of the Logsign web interface events.
Time Column: This is already specified as Time Generated. This is one of time attributes that log will be shown up on the dashboard.
Grouped Column: Grouped Column is the fiducial value indexing the series of information on a dashboard.
Grouped Column Oder Type: Grouped Column Order types is the way of order in chart presentation.
Refresh Time: Refresh time is the number of times in seconds or minutes that a display dashboard updates its information.
Query: By querying some conditions, you will be able to narrow down the result you want.
Rows Per Page: The rows will be displayed in a dashboard
Index Time: The time span from when dashboard receives new data to when the data is written to a dashboard.

3. Click "Next" and set the panel size.

Screen_Shot_2019-12-02_at_14.37.17.png

Now, you can see the dashboard that you have create on custom container.

Screen_Shot_2019-12-02_at_14.37.36.png

Building Line Chart

A line chart is a type of chart which displays information as a series of data points called 'markers' connected by straight line segments. It is a basic type of chart common in many fields. The line chart helps to determine the relationship between two sets of values, with one data set always being dependent on the other set. Moreover, these are useful in that they show data variables and trends very clearly and can help to make predictions about the results of data not yet recorded.

So, let's build an Line Chart sample.

1. Go to Dashboard > Add Widget and select Line Chart icon.

2. Click next and provide required information. The panel description is as below.

Screen_Shot_2019-12-02_at_14.42.14.png

Title: The title presents the customized dashboard name
Information Source: Information Source is a source where the information will be forwarded. In Logsign, there are 4 sources such as Reports, Alerts, Captive Portal, and Logsign Event. Obviously, Reports source is the source that send information of the reports class in Logsign. Alerts is the source that related with the alert class. Captive Portal is the source of hotspot class. Logsign Event is the source of the Logsign web interface events.
Time Column: This is already specified as Time Generated. This is one of time attributes that log will be shown up on the dashboard.
Grouped Column: Grouped Column is the fiducial value indexing the series of information on a dashboard.
Grouped Column Oder Type: Grouped Column Order types is the way of order in chart presentation.
Refresh Time: Refresh time is the number of times in seconds or minutes that a display dashboard updates its information.
Query: By querying some conditions, you will be able to narrow down the result you want.
Rows Per Page: The rows will be displayed in a dashboard
Index Time: The time span from when dashboard receives new data to when the data is written to a dashboard.

3. Click next .

Screen_Shot_2019-12-02_at_14.42.24.png

Now, you can see the result as below.

Screen_Shot_2019-12-02_at_14.42.43.png

Building Grouped Data with Pie Chart

A pie chart is good for showing the relative shares of different quantities and Grouped data chart show you the result with literal value. Grouped Data with Pie Chat is a combination of Pie Chart and Grouped Chart that Logsign dashboard offer respectively. When displaying attribute values as segments in a Grouped Data with Pie Chart, a summary operation is performed on the Grouped Column field values. The aggregate can be any one of the following:

The average value across the features
The maximum of the values of all the features
The minimum of the values of all the features
The sum total of the values of all the features

So, let's build an Grouped Data with Pie chart sample.

1. Go to Dashboard > Add Widget and select Grouped Data with Pie Chart icon.

Screen_Shot_2019-12-02_at_14.44.59.png

2. Click "Next" and provide required information. The panel description is as below. Basically, Grouped Data with Pie Chart is consisted of properties and it's count value. Therefore, selecting a proper Grouped Column is a key to present your dashboard graph.

Screen_Shot_2019-12-02_at_14.48.32.png

Title: The title presents the customized dashboard name
Information Source: Information Source is a source where the information will be forwarded. In Logsign, there are 4 sources such as Reports, Alerts, Captive Portal, and Logsign Event. Obviously, Reports source is the source that send information of the reports class in Logsign. Alerts is the source that related with the alert class. Captive Portal is the source of hotspot class. Logsign Event is the source of the Logsign web interface events.
Time Column: This is already specified as Time Generated. This is one of time attributes that log will be shown up on the dashboard.
Grouped Column: Grouped Column is the fiducial value indexing the series of information on a dashboard.
Grouped Column Oder Type: Grouped Column Order types is the way of order in chart presentation.
Refresh Time: Refresh time is the number of times in seconds or minutes that a display dashboard updates its information.
Query: By querying some conditions, you will be able to narrow down the result you want.
Rows Per Page: The rows will be displayed in a dashboard
Index Time: The time span from when dashboard receives new data to when the data is written to a dashboard.

3. Click "Next" and set the panel size.

Screen_Shot_2019-12-02_at_14.48.54.png

Now, you can see the dashboard that you have create on custom container.

Screen_Shot_2019-12-02_at_14.49.10.png

Articles in this section

Analystic Dasboards Follow

Building Bar/Column Chart

Building Stacked Histogram Chart

Building Line Chart

Building Grouped Data with Pie Chart

Articles in this section

Building Bar/Column Chart

Building Stacked Histogram Chart

Building Line Chart

Building Grouped Data with Pie Chart

Related articles