| KFSensor |
| About |
| Overview |
| Screen shots |
| Features |
| Enterprise edition |
| Compare editions |
Download trial  |
| Buy KFSensor |
| News |
| Manual |
| Knowledge Base |
| Links |
| Extras |
Factsheet (.pdf)  |
Add/Remove Columns
Use the Add/Remove Columns dialog box to change the type and order of the columns displayed in the event list.The Displayed Columns list shows the names of the columns that will be displayed. The top item will be the first column. Use the Move Up and Move Down buttons to change the position of the currently selected column.
The Available Columns list shows the columns that will not be displayed. Use the Add and Remove buttons to transfer columns between the two lists.
Column Descriptions
| Name | Description |
| ID | The event identification number |
| Type | The type of the event |
| Description | Additional information |
| Start | The date and time of the start of an event |
| Start Date | The date of the start of an event |
| Start Time | The time of the start of an event |
| End | The date and time of the end of an event |
| End Date | The date of the end of an event |
| End Time | The time of the end of an event |
| Sensor Bind | The address to which the sensor was bound. This will be blank if the sensor is not bound to a single IP address |
| Sensor IP | The IP address of the sensor on which the event was detected |
| Sensor Port | The port number of the sensor on which the event was detected |
| Sensor IP:Port | The IP address combined with the port of the sensor on which the event was detected |
| Visitor IP | The IP address of the visitor that generated the event |
| Visitor Port | The port number on the visitor's machine used in the connection. N.B. This is likely to be a random port selection |
| Visitor IP:Port | The IP address combined with the port number on the visitor's machine used in the connection |
| Visitor Domain | The domain name of the visitor that generated the event. This is obtained by a reverse DNS lookup on the visitor's IP address |
| Visitor | If the visitor's domain name can be obtained then this is displayed, otherwise the visitor's IP address is displayed |
| Name | The name of the sensor listen that generated the event |
| Protocol | The communication protocol used in the event |
| Action | The action taken by the sensor |
| Sim Server | The name of the Sim Server used, if specified |
| Closed By | Displays who closed the connection, the visitor or the sensor server |
| Limit Exceeded | If the visitor attempted to send more data to the sensor than the maximum permitted then this will be indicated |
| Received | The data sent by the visitor to the sensor. Only a limited number of bytes are displayed and non ASCII displayable bytes are encoded |
| Response | The data sent by the sensor to the visitor. Only a limited number of bytes are displayed and non ASCII displayable bytes are encoded |
| Received Bytes | The length of the data sent by the visitor to the sensor in bytes |
| Response Bytes | The length of the data sent by the sensor to the visitor in bytes |
| Severity | The severity level of the event |
| Sensor ID | The ID of the sensor on which the event was detected |
| Duration | The duration of the event in seconds. |