To manage the growing complexity of a large-scale network, the Anomaly Traffic Detection System is very useful to locate malicious attacks from Internet. While using such a system, the user-friendly interfaces are very important for increasing work efficiency. Thus, this research focuses on improving the user interfaces of Anomaly Console of current Anomaly Detection system and studying the influence of new interfaces on different missions and tasks. The method of this research includes surveys on current situation, building enhanced Anomaly Console for experiments and comparing the interfaces of them. According to the results of surveys, general missions in an Anomaly Detection system are Console Review, Problem Solving, and Issue Tracking. The effective improvements derived from users’ needs are 1) Highlight the severity information, 2) Give suitable layout and data fields, and 3) Simplify link architecture of web pages. After building the enhanced Anomaly Console for experiments, the researcher compared the original console and new console with objective evaluation of completion time of tasks, subjective evaluation of task difficulty, and subjective preference of information layout. Results of this study show that the modified console has significant influence on mission of Console Reviewing. Generally speaking, the modified interfaces have better evaluation. Consequently, in the aspect of how to improve interfaces of current Anomaly Traffic Detection System, (1) present the ‘Severity’ indicator in percentage is better than in traffic amount, while reviewing the anomaly console. (2) Display information, status and link of mitigation action on main page, while reviewing the anomaly console. (3) On the anomaly console page, put the link to enter the work record (remarks) page directly.