How can we help?

Welcome to our explainer videos page! Here, you'll find a variety of guides that walk you through essential features and configurations of Timus Networks. These quick, easy-to-follow videos are designed to help you with everything from setup and configuration to more advanced topics, making your experience with Timus smoother and more efficient. Whether you're a beginner or looking for advanced tips, these videos will guide you every step of the way.

Setting up Zero Trust Access, The Timus Way

Configuring Firewall Rules

Web Filtering and Content Blocking 

Segmenting Traffic With Split Tunneling 

Timus Connect Installation Walk Through 

The Zero trust framework is build around the mindset where you never trust, always verify. See the two minute video below showing how Timus verifies key user behaviors to ensure you are who you say you are.

The Timus Gateway hosts a cloud firewall that performs various functions. See below video showing configuration of an IPsec tunnel from the gateway to an on-premise firewall, giving users connectivity to data no matter where it lives.

With users working from anywhere, the security perimeter is wherever the user is. The Timus adaptive cloud firewall rules follow the user and their identity, not just their device or location, enabling true secure access at the edge.

Each Timus gateway comes standard with a private, static IP address. Benefits include: - Lock down SaaS apps via IP Whitelisting - Single point of entry to the network, providing deeper visibility - Further defining conditional access

At the network layer, Timus' Secure Web Gateway enables web filtering, content blocking and anti-virus to ensure that users are accessing safe applications and sites while working.

This article explains an overview of the primary dashboard within the Timus Manager. Including key indicators, actionable items & insights

The Timus Dashboard is part of Timus Manager. It allows the administrator a comprehensive view of the network, including active users, devices, sites, and events occurring on the client network.

Dashboard components include:

• Users Online: displays the number of users currently connected to the network, providing the administrator with real-time information.
• Devices Online: informs the administrator about the number of devices connected to the network at any given time.
• Sites Online: displays the number of gateways online.
• Traffic: provides the administrator with live and historical data on network traffic, including average upload and download information over the past 4/12/24 hours.

By clicking one of these areas, such as Users Online, you will be redirected to the Users screen. On this screen, the status of the online users within your network is displayed as Active.

Similarly, for Devices Online or Sites Online, you can view the devices and sites listed as Online in the Status section on the respective Devices or Sites screens that will open after clicking.

Most Active Devices: displays the devices that frequently login and out of the network. A maximum of 30 devices can be displayed in the widget.

Most Active Users: displays in order of the users who frequently login and out of the network. A maximum of 30 users can be displayed in the widget.

Events: displays the login and out of users on the network. A maximum of 30 events can be displayed in the widget.

Alerts: shows the total number of events in the upper right corner of the Dashboard as shown in the image below.

These alerts are generated in response to the user/admin sign-in policies under the  Zero Trust Security section.

When you click on the icon, you will be directed to the Alerts page, where you can get more detailed information about the alert.

Profile: Located in the upper right corner of the Dashboard allows you to edit your Account information, Change Password, and change the Session Expiration Time.

Additionally, you can access the Setup Guide or Log out of the interface here.

The partner portal dashboard will provide visibility into customers' relevant information & all data pertaining to your partnership with Timus Networks.

MSPs will leverage the Timus Networks partner portal as their primary dashboard for day to day management of the Timus solution. Within the portal, you will be able to add, remove & manage all clients for both billing and technical management.

Link to - partner portal​

This document is a guide explaining the use of Timus Connect for iOS application.

This application secures your connection by establishing an encrypted tunnel to the Timus Platform.

Timus Connect App supports iOS 14 or later versions.

Login

• Download and install the Timus Connect App from https://www.timusnetworks.com/resources/documents-and-downloads/.
• Administrators can also download the app from Timus Manager > Settings > Downloads page.
• Open the application. You will see the Timus Connect App End User License Agreement on the screen.
• Read and agree to the EULA.
  
• The e-mail address screen will appear. Enter the e-mail address of your Timus account.
• Click Sign In.
  
• In the next screen, Select a Network and enter your Password to login. If there is only one network, that network will be selected automatically.
• Click Sign In.
  

If you trigger a user sign-in policy of Timus Manager with a behavior when you try to login, you may encounter a different authentication method like two-factor authentication.

The screen that opens is the application's main screen. On this screen, you will see the following menu items:

• Connection
• Support
• Settings

Connection

Follow the steps below to establish a connection by using the Timus Connect Windows application:

If this account is synchronized from a directory service like Microsoft Entra ID(Azure AD), Okta, or Google Workspace, at this moment the login screen will be forwarded to the login screen of that directory service.

• The Gateway/Connection screen will appear.
• Here, you will need to select the Gateway. In the gateway selection list, the active sites to which the user is allowed to access will be available.
  

If you have just connected to one of the gateways, it will ask for your permission as shown in the image below to be able to let you use the Timus Connect iOS Application. You need to click on Allow to continue.

If you click on Don't Allow not to give the permission for the Timus Connect iOS Application, you will not able to connect to your gateways.

The round-trip traffic duration to each active gateway will be displayed next to the gateway. The lower the duration, the faster the connection.

• If you want the application to select the gateway for the fastest connection by default, choose Select Fastest.
• If you want to connect via a specific gateway, select this gateway from the drop-down list.
• Click Connect and wait for the connection to be established. Connection information will be updated as Connected in a short time.
• On the connection status screen, you can view the connection status, Private IP Address, and Public IP Address information.
• While connected, you can click on the Details button to see further details about the connection.

• Click on Disconnect to disconnect.

Support

On the Support menu, you can

• Send us your feedback,
• Report any issues you encounter,
• Install a configuration profile,
• Access logs,
• View the Timus Connect App and system information using the About feature.

Settings

• On the Settings menu, you can change the tunnel protocol to WireGuard or OpenVPN.
• You can click on Manage Account for changing password, sending an Always-on VPN disconnect request and installing the certificate.
• You can use the Sign out feature to end your session on Timus Connect App.

If you are unable to modify or turn features on or off, it indicates that the administrator has closed that feature to user selection based on their preference.

This application secures your connection by establishing an encrypted tunnel to the Timus Platform.

Timus Connect App supports Android 10 or higher versions.

Login

• Download and install the Timus Connect App from https://www.timusnetworks.com/resources/documents-and-downloads/.
• Administrators can also download the app from Timus Manager > Settings > Downloads page.

1. Open the application. You will see the Timus Connect App End User License Agreement on the screen.
2. Read and agree to the EULA.

• The e-mail address screen will appear. Enter the e-mail address of your Timus account to sign into your network.

In the next screen, Select a Network and enter your Password to login. If there is only one network, that network will be selected automatically.

If this account is synchronized from a directory service like Microsoft Entra ID(Azure AD), Okta, or Google Workspace, at this moment the login screen will be forwarded to the login screen of that directory service.

• Click Sign In.

If you trigger a user sign-in policy of Timus Manager with a behavior when you try to login, you may encounter a different authentication method like two-factor authentication.

The screen that opens is the application's main screen will have the following menu items:

• Connection
• Support
• Settings

Connection

Follow the steps below to establish a connection by using the Timus Connect Android™ application:

• Enter the login information provided by your company.
• The Gateway/Connection screen will appear.
• Here, you will need to select the Gateway. In the selection list, the active sites to which the user is allowed to access will be available.

The round-trip traffic duration to each active gateway will be displayed next to the gateway. The lower the duration, the faster the connection.

• If you want the application to select the gateway for the fastest connection by default, choose Select Fastest.
  
• If you want to connect via a specific gateway, select this gateway from the drop-down list.
• Click Connect and wait for the connection to be established. Connection information will be updated when Connected.
• On the connection status screen, you can see the connection status, Private IP Address, and Public IP Address information.
• While connected, you can click on the Details button to see further details about the connection.
  
• Click on Disconnect to disconnect.
  

Support

On the Support menu, you can:

• Send us your feedback,
• Report any issues you encounter,
• Install a configuration profile,
• Access logs,
• View the Timus Connect App and system information using the About feature.

Settings

• On the Settings menu, you can change the tunnel protocol to WireGuard or OpenVPN.
• You can click on Manage Account for changing password, sending an Always-on VPN disconnect request and installing the certificate.
• You can use the Sign out feature to end your session on Timus Connect App.
  

If you are unable to modify or turn features on or off, it indicates that the administrator has closed that feature to user selection based on their preference.

Split tunnel configuration works on Android when the tunnel protocol is WireGuard.

Policy for All Users:

This password policy applies to all user accounts that require a Timus password. Users that single sign-on with their third party Identity Provider accounts do not have Timus passwords, thus they are not bound by this policy.

Active Rules:

We have 11 password policies. 6 of them are active and 5 of them are inactive in default as shown in the images below. You are able to change the password policies however you want

Once you click on Edit, you will be able to configure the policies however you want.

Minimum character length

This will be active all the time. You are able to change the minimum character length, which is 8 in default, to any numbers that you want.

Minimum number of lower case letters

We recommend using at least 1 lower-case letter to make the passwords stronger.

Minimum number of upper case letters

We recommend using at least 1 upper-case letter to make the passwords stronger.

Minimum number of digits (0-9) We recommend using at least 1 digit to make the password stronger.

Minimum number of special characters

If selected, password must include special characters such as !@#$-%&*+. We recommend using at least 1 special character to make the password stronger.

Maximum number of consecutive digits

For example; if 3 is selected, up to 3 consecutive digits such as 01, 012, 123, 456, 789 can be included in the password, 4 consecutive digits like 0123 cannot.

Cannot use commonly used passwords

Commonly used passwords can be very easily detected by automated tools of bad actors, thus using them leads to a vulnerability. This check is insensitive for upper-case and lower-case letters.

Cannot contain keywords

You can add the keywords, which you don't want the users/admins to use in their passwords, into here so that the users/admins are not able to use these keywords. Maximum 10 keywords can be entered.

Cannot contain first part of user's email address

For example, the password of the user with the email address johndoe@abc.com cannot contain the text 'johndoe'.

Cannot contain user's first name

If you activate this, the users/admins will not be able to use their user's first name in their passwords. This check is insensitive for upper-case and lower-case letters.

Cannot contain user's last name

If you activate this, the users/admins will not be able to use their user's last name in their passwords. This check is insensitive for upper-case and lower-case letters.

Password expires in

Entered value will be set as the administrator's password expiration limit. Minimum value is 1 day and maximum value is 10.000 days.

What is Heimdal EPP?

Heimdal Endpoint Protection Platform (EPP) is a comprehensive cybersecurity solution that provides advanced threat detection, prevention, and response capabilities. It integrates seamlessly with the Timus platform to collect, monitor, and analyze data from devices within your network, helping to enforce security policies and ensure a strong security posture.

How Heimdal EPP Integration Works?

• Data Collection: Heimdal collects endpoint data such as device status, threat detections, and more.
• Data Transmission: This data is securely transmitted to Timus via APIs.
• Policy Enforcement: Timus uses this data to enforce Device Posture Checks and manage user access based on security policies.
• Security Posture Management: Administrators can monitor the security status of devices in real-time and take proactive actions if necessary.

Obtain the Necessary Credentials from Heimdal

Before you can integrate Heimdal EPP with Timus, you’ll need to gather the following details from your Heimdal Management console:

• Customer ID
  • The Customer ID is a unique identifier assigned to your account by Heimdal.
    1. Sign in to your Heimdal Management Console
    2. Go to Guide -> Your Heimdal API Key
    3. Copy Current selected customer ID value
• API Key
  • The API Key is generated from the API section within the Heimdal Management console.
    1. Sign in to your Heimdal Management Console.
    2. Go to Guide > Your Heimdal API Key
    3. Copy Your Personal API Key value
  • This key is used to authenticate requests made by Timus to the Heimdal API.
• Management URL
  • The Management URL is the base URL you use to access your Heimdal Management Console (e.g. https://rc-dashboard.heimdalsecurity.com/api/heimdalapi).
  • This URL allows Timus to send and receive data from Heimdal by communicating with the correct server.

Integrate with Timus

Once you have gathered all the necessary credentials and completed setup on the Heimdal side, follow the steps below to integrate Heimdal EPP with Timus:

1. Access Timus Manager:

   • Sign in to Timus Manager.
   • Go to Settings -> Integrations.

2. Manage Heimdal Integration:

   • Click Manage under Heimdal.
   • Fill in the fields with the copied Customer ID, API Key and URL values.

   

Testing and Verification

After completing the integration setup:

• Test the Integration: Ensure that Timus can successfully communicate with Heimdal by checking if device data is being collected and displayed in the Timus Manager.
• Verify Policies: Configure a simple Device Posture Check using the data from Heimdal to ensure policies are enforced as expected.

• Brief Description of the Feature: The Timus Telemetry Agent is designed to collect detailed information from devices running Windows and macOS operating systems querying via Timus Connect. This data is displayed in the Manager, providing administrators with comprehensive device insights and enhancing device management and device posture assessments.
• Purpose: The Timus Telemetry Agent was developed to address the need for comprehensive device monitoring and security assessment in a rapidly evolving IT environment. By integrating real-time data collection, this feature provides administrators with the tools needed to ensure devices comply with security policies and to detect potential issues early.
• Target Audience: The primary users of this feature are network administrators and IT security teams who use Timus Connect and the Manager. This feature touches on several parts of the Timus SASE solution, including Timus Connect, Manager, and backend improvements for data collection and processing.

Key Benefits:

• Comprehensive Device Insights:
  • Administrators can access detailed information about devices, including operating system details, hardware specifications, security settings, and storage devices, providing a holistic view of each device's status. This enables better decision-making and more effective management of the IT environment.
• Enhanced Security Monitoring:
  • The integration of Timus Telemetry Agent data into Device Posture Checks allows for continuous monitoring and assessment of device compliance and security posture, enhancing overall network security. This proactive approach helps in identifying and mitigating potential threats before they can cause significant damage.
• Real-Time Data Collection:
  • Timus Telemetry Agent continuously collects and updates device data, ensuring that administrators have access to the most current information. This real-time data is crucial for timely decision-making and incident response, allowing organizations to maintain a robust security posture.
• Integration with Existing Security Tools:
  • The data collected by Timus Telemetry Agent can be used alongside information from other security tools such as Microsoft Defender, Bitdefender, and SentinelOne, providing a unified approach to device posture management. This integration enhances the effectiveness of existing security measures and ensures comprehensive coverage.
• Customizable Reporting and Policies:
  • Administrators can create custom Device Posture Checks and User Sign-in policies based on the data from Timus Connect. This allows for tailored security measures and compliance reporting, ensuring that organizations can adapt their security strategies to meet specific requirements and threats.

Use Cases:

Use Case 1: Identifying and Isolating Malware

Scenario: An IT security team wants to block a suspicious process named "dllhost.exe" running on a user's device, which could compromise the integrity and security of the network.

Implementation:

• The security team accesses the Manager and navigates to the devices table. They select the device and click on "View Device Details."
• In the "Processes" tab, they identify the "dllhost.exe" process.
• They use the "View Process Details" to get more information about the process and its associated ports.
• The security team then creates a Device Posture Check (DPC) using Timus Connect as a data source, specifying "Running Processes" and setting the identifier to "dllhost.exe".
• They configure the DPC to fail if this process is detected, ensuring immediate isolation of the device from the network.

Result:

• The device fails the DPC due to the presence of "dllhost.exe" triggering automated actions such as network isolation. This prevents the spread of malware and protects network resources.

Use Case 2: Ensuring OS Version Compliance

Scenario: An organization needs to ensure all devices running Windows have an OS version that meets their security requirements.

• Device Posture Check Configuration:
  • Title: OS Version Compliance
  • Assigned Operating System: Windows
  • Attribute List:
    • Data Source: Timus Connect
    • Attribute: OS Version
    • Condition: is any of
    • Pass Value: Windows 11

Implementation:

1. The administrator navigates to the Device Posture Checks section in the Manager portal.
2. The administrator creates a new posture check titled "OS Version Compliance."
3. They set the data source to Timus Connect and select the attribute "OS Version."
4. They configure the condition to pass if the OS version is Windows 11.
5. They save the posture check, which will now evaluate connected devices against these criteria.

Result:

• Devices with compliant OS versions pass the check and retain normal access. Devices with non-compliant OS versions are flagged and can be restricted or prompted for updates.

Use Case 3: Monitoring and Restricting Insecure Running Processes

Scenario: An IT security team wants to ensure that certain potentially insecure processes are not running on any device within the network.

• Device Posture Check Configuration:
  • Title: Insecure Process Monitoring
  • Assigned Operating System: Windows and macOS
  • Attribute List:
    • Data Source: Timus Connect
    • Attribute: Running Processes
    • Identifier: AnyDesk
    • Condition: contains
    • Pass Value: True

Implementation:

1. The administrator accesses the Manager and goes to the Device Posture Checks section.
2. They created a new posture check titled "Insecure Process Monitoring."
3. They set the data source to Timus Connect and select the attribute "Running Processes."
4. They enter "AnyDesk" as the identifier and set the condition to "contains" with a pass value of "True."
5. The check is saved, and it continuously monitors devices for the running process "AnyDesk"

Result:

• If the process is detected, the device fails the posture check, and appropriate actions can be taken, such as notifying the user to close the application or restricting network access until the process is terminated.

Use Case 4: Ensuring Critical Services are Running

Scenario: A critical service must be running on all devices for compliance and operational reasons.

• Device Posture Check Configuration:
  • Title: Critical Service Check
  • Assigned Operating System: Windows
  • Attribute List:
    • Data Source: Timus Connect
    • Attribute: Service State
    • Identifier: CSFalconService
    • Condition: is equal to
    • Pass Value: Running

Implementation:

1. The administrator goes to the Device Posture Checks section in the Manager portal.
2. They create a new posture check titled "Critical Service Check."
3. They set the data source to Timus Connect and choose the attribute "Service State."
4. They specify "CSFalconService" as the identifier and set the condition to "is equal to" with a pass value of "Running."
5. The posture check is saved and monitors devices to ensure the specified service is running.

Result:

• Devices with the critical service running pass the posture check and remain operational. If the service is not running, the device fails the check, triggering alerts or remediation actions.

Use Case 5: Managing Startup Items for Security

• Scenario: The security team wants to ensure that certain applications are not set to start automatically on devices to prevent potential security risks.
  • Device Posture Check Configuration:
    • Title: Startup Item Compliance
    • Assigned Operating System: Windows
    • Attribute List:
      • Data Source: Timus Connect
      • Attribute: Startup Items
      • Identifier: PanGPA
      • Condition: contains
      • Pass Value: True

Implementation:

1. The administrator navigates to the Device Posture Checks section in the Manager portal.
2. They create a new posture check titled "Startup Item Compliance."
3. They set the data source to Timus Connect and select the attribute "Startup Items."
4. They enter "PanGPA" as the identifier and set the condition to "contains" with a pass value of "True."
5. The posture check is saved and monitors startup items on devices.

Result:

• If the identified startup item is present, the device fails the posture check, and actions such as disabling the startup item or alerting the user can be taken to mitigate the security risk.

Competitive Analysis:

• Comparison with Competitors: The Timus Telemetry Agent feature in Timus Connect distinguishes itself from similar products offered by competitors such as Perimeter 81, Todyl, Fortigate, Zscaler, and Check Point through several key aspects:

1. Detailed Data Collection:
   • Timus Connect: Provides comprehensive data collection from devices, including operating system details, hardware specifications, security settings, and more.
   • Perimeter 81: Offers basic telemetry but lacks the depth of data collection provided by Timus Connect.
   • Todyl: Provides some telemetry data but does not offer the same level of detail and integration as Timus Connect.
   • Fortigate: Supports basic device information but lacks the comprehensive data collection capabilities of Timus Connect.
   • Zscaler: Offers telemetry data but does not match the granularity and flexibility of Timus Connect’s options.
   • Check Point: Provides basic telemetry features but lacks the depth of customization and detail available in Timus Connect.
2. Integration with Device Posture Checks:
   • Timus Connect: Seamlessly integrates telemetry data into Device Posture Checks, enhancing security monitoring and compliance.
   • Perimeter 81: Offers basic integration but lacks the comprehensive posture check capabilities of Timus Connect.
   • Todyl: Provides some integration options but does not offer the same level of seamless integration with posture checks.
   • Fortigate: Limited integration with posture checks compared to Timus Connect.
   • Zscaler: Basic integration with posture checks but lacks the advanced features of Timus Connect.
   • Check Point: Offers limited integration with posture checks, not matching the comprehensive approach of Timus Connect.
3. Real-Time Data Collection:
   • Timus Connect: Continuously collects and updates device data, providing real-time insights.
   • Perimeter 81: Offers periodic updates but lacks continuous real-time data collection.
   • Todyl: Provides regular updates but does not offer continuous real-time data collection.
   • Fortigate: Supports periodic data collection but lacks real-time updates.
   • Zscaler: Provides basic real-time updates but not as comprehensive as Timus Connect.
   • Check Point: Offers periodic updates, lacking continuous real-time data collection.
4. Unique Selling Points:
   • Comprehensive Device Insights:
     • Feature: Detailed information on operating systems, hardware, security settings, and storage devices.
     • Benefit: Enables better decision-making and more effective IT management.
   • Enhanced Security Monitoring:
     • Feature: Integration with Device Posture Checks for continuous monitoring and assessment.
     • Benefit: Improves overall network security by identifying and mitigating potential threats early.
   • Real-Time Data Collection:
     • Feature: Continuous data collection and updates.
     • Benefit: Provides the most current information for timely decision-making and incident response.
   • Integration with Existing Security Tools:
     • Feature: Seamless integration with tools like Microsoft Defender, Bitdefender, and SentinelOne.
     • Benefit: Enhances the effectiveness of existing security measures.
   • Customizable Reporting and Policies:
     • Feature: Ability to create custom posture checks and policies based on collected data.
     • Benefit: Allows for tailored security measures and compliance reporting.

• To view the site details, go to Timus Manager and click on the Sites page.
• Find the site whose details you want to view and click on the ellipsis icon in the corresponding row.
• Select "View" to access the page with site details.
• This page contains a summary table titled "Connectivity." The table provides information on three parameters: Connection Health: indicates the overall status and reliability of the connections Throughput: refers to the amount of data that can be transmitted through the network within a given time frame, indicating the network's capacity. Efficiency: measures how effectively the network utilizes its resources to transmit data.

This Connectivity section helps you make informed decisions or take necessary actions to optimize network connectivity.

• The Network Statistics graph shows the Health or Throughput data for the Primary WAN over the Last 7/15 Days, Last Month, or Custom date range.

• List of the networks of the site.
• Site information widget shows the most important details about the site and has the ability to configure the site with the Edit feature at the upper right of the widget.

• Action can be Allow or Deny.
• Status is selected as Enabled by default. Yet, you can select Disabled while creating a rule to make it enabled later.
• The Source can be Network, Site, IP, Location(GeoIP), User, Team, Device, Tag and you are allowed to add multiple sources.
• The Destination can be Network, Site, IP, User, Team, Device, Tag, Category, Website, Keywords and you are allowed to add multiple destinations.
• The service can be selected from the pre-defined list as shown in the image below or you can select Custom to customize the rule. If you would like to define a rule for both TCP and UDP, you can select TCP/UDP as shown in the image below. You are allowed to define multiple services.
• You can block/allow any countries by using the option Location on both Source and Destination.

Services

Service Category
HTTP
Web Access
HTTPS
VoIp
SIP
Database Access
MSSQL_SERVER
MSSQL_MONITOR
MYSQL
POSTGRESQL
Remote Access
RDP
SSH
TELNET
VNC-RFB
RPC
DCE-RPC
File Access
FTP_DATA
FTP_CONTROL
TFTP
SMB
Network Services
DNS
DNS_MULTICAST
DNS_OVER_TLS
DNS_OVER_QUIC
DHCP_SERVER
DHCP_CLIENT
NTP
SNMP
SYSLOG
SSDP_UDP
SSDP_TCP
Email
IMAP
IMAPS
POP3
POP3S
SMTP
SMTPS
Authentication
LDAP
LDAPS
RADIUS
KERBEROS_AUTH
KERBEROS_PWD
KERBEROS_ADMIN
Protocol
HOPOPT
ICMP
IGMP
GGP
IPv4
ST
TCP
CBT
EGP
IGP
BBN-RCC-MON
NVP-II
PUP
ARGUS
EMCON
XNET
CHAOS
UDP
MUX
DCN-MEAS
HMP
PRM
XNS-IDP
TRUNK-1
TRUNK-2
LEAF-1
LEAF-2
RDP
IRTP
ISO-TP4
NETBLT
MFE-NSP
MERIT-INP
DCCP
3PC
IDPR
XTP
DDP
IDPR-CMTP
TP++
IL
IPV6
SDRP
IPV6-ROUTE
IPV6_FRAG
IDRP
RSVP
GRE
DSR
BNA
ESP
AH
I-NLSP
SWIPE
NARP
MIN-IPV4
TLSP
SKIP
IPV6-ICMP
IPV6_NONXT
IPV6_OPTS
CFTP
SAT-EXPAK
KRYPTOLAN
RVD
IPPC
SAT-MON
VISA
IPCV
CPNX
CPHB
WSN
PVP
BR-SAT-MON
SUN-ND
WB-MON
WB-EXPAK
ISO-IP
VMTP
SECURE-VMTP
VINES
IPTM
NSFNET-IGP
DGP
TCF
EIGRP
OSPFIGP
SPRITE-RPC
LARP
MTP
AX.25
IPIP
MICP
SCC-SP
ETHERIP
ENCAP
GMTP
IFMP
PNNI
PIM
ARIS
SCPS
QNX
A/N
IPCOMP
SNP
COMPAQ-PEER
IPX-IN-IP
VRRP
PGM
L2TP
DDX
IATP
STP
SRP
UTI
SMP
SM
PTP
ISIS_OVER_IPV4
FIRE
CRTP
CRUDP
SSCOPMCE
IPLT
SPS
PIPE
SCTP
FC
RSVP-E2E-IGNORE
MOBILITY_HEADER
UDPLITE
MPLS-IN-IP
MANET
HIP
SHIM6
WESP
ROHC
ETHERNET
AGGFRAG
NSH

• Create a Forwarding rule by going to Timus Manager -> Rules -> Forwarding page.

• Once you click on Create New, you will be able to see the page as shown in the image below:

• You can define a range for both source and destination ports like 1000-2000.
• Once you extend the Schedule, you can decide if the forwarding will be active Everyday (all the time) or it will be active for a specific period of time. It has been selected as Everyday by default.

• Map to Port: When enabled, destination ports loop sequentially for source ports.

The Map to Port feature allows you to specify a range of ports on both protocols, TCP or UDP, for instance, 70-75, and map them to a destination range, such as 80-85. Ports are forwarded sequentially: port 70 maps to port 80, port 71 maps to port 81, and so on. This feature is useful for port forwarding in a one-to-one manner."

• View all the traffic in your network with details on Timus Manager -> Insights -> Traffic Logs page,
• Search the list using Time, Source, Action, Destination, Factor parameters on the Logs tab.
• Clear the filters you have created by clicking on Clear All Filters.
• You can gather more information by clicking the icon in the Details section to identify if there's been an issue.

• You are able to check the Rule IDs of the traffic logs to detect which rule allows or denies the traffic.
• If you have previously enabled SSL Inspection for a user or device, you can access detailed data by going to the User or Device tabs.

In the Traffic Logs page, where you can access comprehensive data presented through tables and graphics organized into various tabs. Here's an overview of what you'll find in each tab:

You can download the csv file to get a report for your traffic by clicking on Export at the top right of the screen as shown in the image above.

Only the last 10.000 records will be exported when you have created it.

When you have clicked on the Export button, you will see the pop-up above when the Export process is completed successfully. You can click on Download to get your report.

• User Tab: User Information Top Most Active Users Detailed User Logs Most Active Devices per User Traffic Analysis Most Frequently Accessed Resources Time Spent by Users
• Team Tab: Top Most Active Teams Team-specific Activity Data Most Active Devices within Teams Most Used Resources by Teams Time Spent by Teams
• Device Tab: Device Information Most Active Devices Device-specific Activity Data Most Used Resources by Devices Time Spent on Devices
• Applications Tab: Most Used Applications Application-specific Usage Data
• Website Tab: Most Accessed Resources on Websites
• Network Tab: Most Active Networks

This organized approach allows you to analyze user behavior, team activities, device usage, application preferences, website interactions, and network engagement.

Dive into detailed insights to make informed decisions about your product usage and optimize your resources effectively.

1. Go to Timus Manager -> Insights -> Traffic Logs page.
2. You can view all traffic on the Logs tab without navigating to other tabs.
3. To configure the list, utilize the search bar. To view a specific user's traffic, navigate to the Source heading.
4. Click on "Select" here.
5. Click on "User".
6. Click on "Start typing..." Select a user or scroll down the dropdown menu to find a user and view their traffic logs.

Click on the "Search" button.

By clicking the Search button, you can access a list displaying all the traffic generated by this user on your network.

To access the details of the traffic logs listed, click on the blue info icon located at the far right of the respective line.

You can use the Search bar to display more specific information about the logs you want to see.

Simply insert the desired columns with the appropriate command:

Time: Select the Start and End date of the traffic logs you want to display on the list.

Action: Choose between Drop or Allow.

Destination: Specify Team, Device, IP, Network, Site, or Any.

Factor: Specify Application, Category, Website, Keywords, or Any.

1. Similarly, to see a user's traffic logs and in general, to view all user's traffic logs Click the User tab on this page.
2. To view detailed user traffic, select a user from the Select section at the top of the page.

After selecting the user, you display the following information on the page.

• Most Active Users,
• Users Logs,
• The user's Most Active Devices,
• Traffic,

• Applications and Websites as the user's Most Used Resources,

• Time Spent as applications and websites where the user spends the most time,

• The user's Events on your network.

You can also view traffic details for the following components by going to the Insights dropdown > Traffic Logs page:

• Logs
• User
• Team
• Device
• Application
• Website
• Network

Manage Templates

1. Go to Timus Manager -> Insights -> Automated Reports page.
2. To manage templates, click on the "Manage Templates" button located in the upper right corner of the Reports page.
3. From here, you can view the available templates, which are divided into two categories: Predefined and Custom.

Before creating a report, it is important to first manage the templates. This will allow you to choose analytics and insights you want to include in your report, using either predefined or custom templates.

To view the template or create a report using Timus's default Predefined Weekly Template, click the ellipsis icon next to it.

You also have the option to use the template as a basis for a new one:

Create Custom Template

To create a custom template,

1. Click the "Create Custom Template" button in the Manage Templates screen and enter the title of the new template.
2. After entering a title for the new template and clicking the Create Custom Template button, the page for your newly created template will be displayed on your screen.
    
3. To add widgets to the template's screen, click the "Add Widget" button. This will open the "Add Widget" pop-up window where you can select the widgets you want to display.
4. After you click the "Add" button, use the drag-and-drop method to move widgets around the page and arrange the template as desired.
5. If you want to view different data ranges or components, you can add the same widget multiple times.
6. Click "Configure" to adjust the number of components displayed in the tables and view data in the widgets with different Data Range Types.
7. 
8. You can choose between Relative or Fixed data range types and select Daily, Weekly, Monthly, or Yearly parameters for the Data Range.

Create Report

1. Next, go to the Reports page and then, either click the "Create Report" button or select "Create Report" from the ellipsis icon of the template row on the Manage Templates pop-up screen.
2. On the Create Report screen, enter a title for the report. 
3. Select the Type of report and Template.
4. Add recipients from the Recipients section by entering their information and selecting their email language.
5. Click "Save" and wait for the Successfully Created notification to appear.
6. To view the report, click the ellipsis icon in the row of the report you created, then click "View".
7. To generate the report, click the Actions button in the upper-right corner of the Reports page and select "Generate Report".
8. You will see a notification that says "Report Result successfully created. Click here to see the result in your browser".
9. Click "Here" to view your on-demand report in your browser.
10. When you add a Recipient, your report will be sent to their e-mail address.
11. If you've scheduled a report, the system will automatically generate and send it to the recipient of your choice.
    • The automated report you created for Daily events is scheduled to run every day without any issues.
    • For Weekly events, the report is set to run every Monday.
    • Monthly reports are generated on the 1st day of each month, such as November 1st and December 1st.
    • Yearly reports are generated on January 1st of every year.

Once your report is created, you can view the results by clicking on the Actions button and selecting the Go to Results page option on the report's page.

The generated reports will be saved on the report's page. You can access and view all reports generated on different dates by using the Displayed Report filter.

To configure the widgets, click on the "Show Template" option located on the report page. This is the same process as when you access it from the "Manage Templates" -> "Edit" page.

What no gateways available mean and possible scenarios

This information message means that if the user is not allowed to connect to any gateway, a specific message will appear in the Timus Connect application.

The administrator must select the remote site for the user in the manager.

But there can be another root cause to show this error when;

• User might not access the Timus Cloud services or doesn’t have internet access.

To verify that, please run:

ping user.timuscloud.com
ping device.timuscloud.com

Also, try to go to user.timuscloud.com or device.timuscloud.com from the browser. If user can not reach connect application will not able to connect.

• timus-connect-background service is not running

  Go to Activity Monitor (Mac) or Task Manager (Windows) on your device and find timus-connect-service.

  Alternatively, you can go to http://localhost:49202 in your browser. If you see the output, it means the service is running.

  

  If you validate that the service is not running, please follow these steps:

  • [MacOS] Validate if service is running

    • Check if the plist file exists

      • Run the commands below to check if they exist:

        #for connect service
        cat /Library/LaunchDaemons/timus-connect-service.plist
        
        #for helper service
        cat /Library/LaunchDaemons/timus-helper-service.plist
        

      • After running the commands, if they exist, please run this command to load the service. After running, please check if the service has started.

        # Avoid if error occurs after running these commands. This is just a make sure none of instance exist on device
        sudo launchctl unload /Library/LaunchDaemons/timus*
        sudo launchctl load /Library/LaunchDaemons/timus*
        

  • [Windows] Validate if service is running

    Find services from search

    

    Make sure this 2 services are exist

    

    If they are not exist and running state try to install them manually see if any error occurs. For clean service install run these commands

    sc.exe stop timus-helper-service
    sc.exe stop timus-connect-service
    
    taskkill /F /IM "timus-connect-service.exe"
    taskkill /F /IM "timus-helper-service.exe"
    
    sc.exe delete timus-connect-service
    sc.exe delete timus-helper-service
    
    cd C:\\Program Files\\Timus Connect\\resources\\service
    
    timus-connect-service.exe -service install && timus-connect-service -service start
    timus-helper-service.exe -service install && timus-helper-service -service start
    

  After validation, if you see that the services are still not running and nothing works, try to start the service manually and check if any crashes occur.

  • [MacOS] Validate if service crash

    Run this command and see if service works

    #for connect service
    sudo /Applications/Timus\\ Connect.app/Contents/Resources/service/timus-connect-service
    
    #for helper service
    sudo /Applications/Timus\\ Connect.app/Contents/Resources/service/timus-helper-service
    

  • [Windows] Validate if service crash

    Run these commands

    cd C:\\Program Files\\Timus Connect\\resources\\service
    timus-connect-service.exe
    

  Let’s assume that a crash happened, which in most cases (99%) is a permission issue.

  At this point, it is better to perform a clean setup by removing all files we have and reinstalling Timus Connect. Please find the section with the clean setup steps for Timus Connect.

  Sometimes, SentinelOne, Bitdefender, or other security tools can prevent Timus Connect from working. We can confirm this by checking the task manager or asking the customer.