Table of Contents
Advertisement
Access
Table 2-11 Access Categories
Low Level Event
Category
Unknown Network
Communication
Event
Firewall Permit
Firewall Deny
Flow Context
Response
Misc Network
Communication
Event
IPS Deny
Firewall Session
Opened
Firewall Session
Closed
Dynamic Address
Translation
Successful
No Translation
Group Found
Misc Authorization
ACL Permit
ACL Deny
Access Permitted
Access Denied
Session Opened
Session Closed
The access category indicates events relating to authentication and access
controls. The associated low-level event categories include:
Description
Indicates an unknown network
communication event.
Indicates access to the firewall
was permitted.
Indicates access to the firewall
was denied.
Indicates events from the
Classification Engine in response
to a SIM request.
Indicates a miscellaneous
communications event.
Indicates Intrusion Prevention
Systems (IPS) denied traffic.
Indicates the firewall session has
been opened.
Indicates the firewall session has
been closed.
Indicates that dynamic address
translation was successful.
Indicates that no translation
group has been found.
Indicates that access was
granted to a miscellaneous
authentication server.
Indicates that an ACL was
permitted access.
Indicates that an ACL was
denied access.
Indicates that access was
permitted.
Indicates that access was
denied.
Indicates that a session was
opened
Indicates that a session was
closed.
STRM Event Category Correlation Reference
Severity Level
Event Correlation/
(0 to 10)
Processing
3
Correlation Group 3 Scenario 2
0
Correlation Group 3 Scenario 2
4
Correlation Group 3 Scenario 2
5
No event
pass-through
3
Correlation Group 3 Scenario 2
4
Correlation Group 3 Scenario 2
0
Correlation Group 3 Scenario 2
0
Correlation Group 3 Scenario 2
0
Correlation Group 3 Scenario 2
2
Correlation Group 3 Scenario 2
2
Correlation Group 3 Scenario 2
0
Correlation Group 3 Scenario 2
4
Correlation Group 3 Scenario 2
0
Correlation Group 3 Scenario 2
4
Correlation Group 3 Scenario 2
1
Correlation Group 3 Scenario 2
1
Correlation Group 3 Scenario 2
Access
23
Additional Event
Processing
Scenario 2
Advertisement
Table of Contents
Related Manuals for Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 - EVENT CATEGORY CORRELATION REFERENCE GUIDE REV 1
Related Products for Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 - EVENT CATEGORY CORRELATION REFERENCE GUIDE REV 1
- Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 - AQL EVENT AND FLOW QUERY CLI GUIDE
- Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 - CATEGORY OFFENSE INVESTIGATION GUIDE REV 1
- Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 - SNMP AGENT GUIDE REV 1
- Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 R2 - LOG MANAGEMENT ADMINISTRATION GUIDE REV 1
- Juniper STRM LOG MANAGEMENT 2008.2 - S 6-2008
- Juniper MEDIA FLOW CONTROLLER 2.0.4 -
- Juniper MEDIA FLOW MANAGER 2.0.2 - ADMINISTRATOR S GUIDE AND CLI
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - CONFIGURING INTRUSION DETECTION PREVENTION DEVICES GUIDE REV 01
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - API GUIDE REV 1
- Juniper NETWORK AND SECURITY MANAGER 2010.3 - M-SERIES AND MX-SERIES DEVICES GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.2 - ADMINISTRATION GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.3 - ADMINISTRATION GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - CONFIGURING J SERIES SERVICES ROUTERS AND SRX SERIES SERVICES GATEWAYS GUIDE REV
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - ADMININISTRATION GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - M-SERIES AND MX-SERIES DEVICES GUIDE REV 1
- Juniper NETWORK AND SECURITY MANAGER 2010.3
Need help?
Do you have a question about the SECURITY THREAT RESPONSE MANAGER 2008.2 - EVENT CATEGORY CORRELATION REFERENCE GUIDE REV 1 and is the answer not in the manual?
Questions and answers