How Can I Verify That Strm Is Receiving Valid Offenses - Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 - CATEGORY OFFENSE INVESTIGATION GUIDE REV 1 Manual
Category offense investigation guide
Hide thumbs
Also See for SECURITY THREAT RESPONSE MANAGER 2008.2 - CATEGORY OFFENSE INVESTIGATION GUIDE REV 1:
- Administration manual (370 pages) ,
- Manual (228 pages) ,
- Getting started (14 pages)
Table of Contents
Advertisement
How Can I Verify
That STRM is
Receiving Valid
Offenses?
Step 1
Step 2
Step 3
Step 4
STRM will no longer create additional offense for this source IP address when this
type of activity occurs.
By default, STRM generates system offenses as a result of multiple system errors
occurring within a specified time frame on the same host. If STRM detects system
errors occurring on your network that are not creating offenses, this is likely related
to the number of errors that have occurred or the time frame in which the errors
have occurred. To tune these values using the Custom Rules Wizard:.
In the navigation bar of the Offense Manager, click Rules.
The Rules interface appears.
Using the Display drop-down list box, select All Deployed Rules.
Locate the Default-Rule-System: Multiple System Errors rule.
Click Edit.
The Rules Wizard appears.
Offense Category Investigation Guide
How Can I Verify That STRM is Receiving Valid Offenses?
81
Advertisement
Table of Contents
