Table of Contents
Advertisement
About Security Explorer
Copyright © 2010, Juniper Networks, Inc.
To query the actual records in the database:
Log in to the Device Server.
1.
Execute
/usr/bin/psql -U nsm -d profilerDb
2.
profilerDb
is the database name. By default, the PostgreSQL user is set to nsm. You
can define the PostgreSQL user when installing NSM.
The following is a sample query:
[root@ bin]# which psql
usr/bin/psql
root@]# /usr/bin/psql -U nsm -d profilerDb
Welcome to psql 8.1.9, the PostgreSQL interactive terminal.
Type: \copyright for distribution terms
\h for help with SQL commands
\? for help with psql commands
\g or terminate with semicolon to execute query
\q to quit
profilerDb=# select * from host;
id | device | os | ip | mac | oui | hits | vlan | first | last
----+--------+----+----+-----+-----+------+------+-------+------
(0 rows)
profilerDb=#
The Security Explorer is a powerful, graphical tool that enables you to visualize and
correlate network behavior based on data collected in the Profiler, Log Viewer, and Report
Manager. You can use the Security Explorer to perform the following tasks:
Get a dynamic, interactive view of your network.
Drill down on a particular host or server and view all the different attacks, open ports,
destination or peer IP addresses, and so on.
Move between hosts and peers and trace a connection or attack.
Toggle between different views or slices of the network, as well as explore the
contextual information (logs, reports, IDP attacks, IP addresses, and so on) within the
Security Explorer panel.
The main component is a graph that represents the relationships between data objects,
such as hosts, services, attacks, etc.
There are five main views in the Security Explorer:
"Security Explorer Main Graph" on page 732
"Connections Detail Pane" on page 733
"Reference Point Pane" on page 734
Chapter 18: Analyzing Your Network
; where
stands for the username and
nsm
731
Advertisement
Table of Contents
