Data Loss Prevention

I am looking for a solution to capture traffic volume from Network Monitor on a daily basis. This would be used to identify trends and patterns over a period of time and be able to then compare SMTP/HTTP values associated with those patterns.

I know that I can view these values from the System > Servers > Traffic page, and change the timeframes from All Dates to Today. However, what I am requesting is the ability to pull these daily totals from somewhere and log them as needed. Because the values are stored from these specific date range options - I assume that they're stored somewhere.

Has anyone had experience in pulling these types of metrics - either manually, or by creating a macro to grab the totals from a log source.

Thanks in advance.

DLP includes a little-known, separate reporting package called IT Analytics that you could try.  It pulls incident metadata (not all incident data) from the DLP database and stores it in a SQL database that can then be used to generate reports on DLP metrics like the volume of incidents that meet specific criteria. 

hello,

 you may have a look at packetcapture log files (may be with higher log level than the default one). Then you will have to parse it in order to obtain your statistics.

 As this runs on network monitor, you must pay attention because having high disk activity may impact your system performance (network monitor use disk to store capture and messages before analysis) and may use more disk space than usual.

 regards.