No traffic was detcted on the link for a period longer than 'Time Silent'. Time silent is automatically calculated during Learning mode.

• Network Visibility

Traffic was re-detected on a interface.

• Network Visibility

No tarffic was detected on the interface for a period of time greater than the 'Inactive range' that was defined as part of interface configuration.

• Network Visibility

The system detected traffic on an inactive asset

• Network Visibility

Multiple changes of the MAC address for a specific IP were detected in a short period of time - this pattern is typical for ARP poisioning attack attempt

• Network Visibility

The system detected traffic on an inactive link

• Network Visibility

A device that wasn't communicating recently and according to the iSID now is defined as inactive- can define in the isid the time frame of no communication in order to get as inactive.

• Network Visibility

A new Mac was learned for an existent device.

• Network Visibility

link refers to source and destination and port. a new link will appear when a source and destination that haven't spoken before will speak for the first time

• Network Visibility

new protocol that was discovered in an existing link (source and destination that already discovered in another protocol)

• Network Visibility