Configuring Report Processing Warnings; Saving Your Report Settings; Log Viewer Integration; Viewing Logs From Report Manager - Juniper NETWORK AND SECURITY MANAGER 2010.2 - ADMINISTRATION GUIDE REV1 Administration Manual

Network and Security Manager Administration Guide

Configuring Report Processing Warnings

Saving Your Report Settings

Log Viewer Integration

Viewing Logs From Report Manager

798
For example, you are a security administrator that typically reviews the "Attacks by
Severity" report. You notice that critical attacks are on the rise. To track this more closely,
you can modify the log filter on the "Attacks by Severity" report so that the report only
displays critical attacks. To do this, select the "Attacks by Severity" report, and use Set
Report Options to access the Log Filter tab. In the Log Filter tab, select to filter on attacks,
and unselect all attacks except for those that are critical.
Each time you generate a report, it must perform a scan operation on a certain set of log
records in the log database. The total number of log records that a report operation
requires can have an adverse impact on your overall management performance. To
prevent extraordinarily lengthy report operations from impacting your overall system
performance, you can use the Preferences tool to configure NSM to display a warning
message before a report is to scan a certain threshold number of log records.
NOTE: This setting also applies to the Dashboard and Log Viewer.
For example, set a warning message threshold at around 1,000,000 logs. To do this, use
the Preferences option in the Tools menu and select Reports. In the New Preference
Settings dialog box, click in the Enable Warnings check box and use the up and down
arrows to specify 1,000,000 as the number of Maximum Records to Filter.
After this preference is applied, a warning appears each time a report is set to perform
an operation requiring 1,000,000 log records to be scanned.
After you have defined your custom reports, you can save the report settings as a custom
report. Saved reports are organized under the tree node named "Custom Reports".
Report Manager uses log data as the basis of all the information presented in each report.
Because of this, we recommend that you consider requirements for reporting as you
decide how many log entries you want to maintain and store.
One key benefit of Report Manager's tight integration with log entries is the ability to
quickly access the source log data presented in each report. To view the source log entries
in the Log Viewer for more detailed information about the report data, right-click a data
point in any report and select Log Viewer from the View menu. The source log entries
will appear in the Log Viewer.
NOTE: You cannot save the view generated in the Log Viewer for use in a later UI session.
Copyright © 2010, Juniper Networks, Inc.