Table of Contents
Advertisement
40
E
C
VENT
ATEGORY
Table 2-21 Application Category (continued)
Low Level Event
Category
RDP Reset
RDP Terminated
RDP Denied
RDP In Progress
RDP Redirected
FileTransfer Opened
FileTransfer Closed
FileTransfer Reset
FileTransfer
Terminated
FileTransfer Denied
FileTransfer In
Progress
FileTransfer Delayed
FileTransfer Queued
FileTransfer
Redirected
DNS Opened
DNS Closed
DNS Reset
DNS Terminated
DNS Denied
C
ORRELATION
Description
Indicates that an RDP
connection was reset.
Indicates that an RDP
connection was terminated.
Indicates that an RDP
connection was denied.
Indicates that an RDP
connection is currently in
progress.
Indicates that an RDP
connection was redirected.
Indicates that a file transfer
connection was established.
Indicates that a file transfer
connection was closed.
Indicates that a file transfer
connection was reset.
Indicates that a file transfer
connection was terminated.
Indicates that a file transfer
connection was denied.
Indicates that a file transfer
connection is currently in
progress.
Indicates that a file transfer
connection was delayed.
Indicates that a file transfer
connection was queued.
Indicates that a file transfer
connection was redirected.
Indicates that a DNS
connection was established.
Indicates that a DNS
connection was closed.
Indicates that a DNS
connection was reset.
Indicates that a DNS
connection was terminated.
Indicates that a DNS
connection was denied.
STRM Event Category Correlation Reference
Severity Level
Event Correlation/
(0 to 10)
Processing
3
Correlation Group 3 Scenario 2
4
Correlation Group 3 Scenario 2
4
Correlation Group 3 Scenario 2
1
Correlation Group 3 Scenario 2
3
Correlation Group 3 Scenario 2
1
Correlation Group 3 Scenario 2
1
Correlation Group 3 Scenario 2
3
Correlation Group 3 Scenario 2
4
Correlation Group 3 Scenario 2
4
Correlation Group 3 Scenario 2
1
Correlation Group 3 Scenario 2
3
Correlation Group 3 Scenario 2
3
Correlation Group 3 Scenario 2
3
Correlation Group 3 Scenario 2
1
Correlation Group 3 Scenario 2
1
Correlation Group 3 Scenario 2
5
Correlation Group 3 Scenario 2
5
Correlation Group 3 Scenario 2
5
Correlation Group 3 Scenario 2
Additional Event
Processing
Advertisement
Table of Contents
Related Manuals for Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 - EVENT CATEGORY CORRELATION REFERENCE GUIDE REV 1
Related Products for Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 - EVENT CATEGORY CORRELATION REFERENCE GUIDE REV 1
- Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 - AQL EVENT AND FLOW QUERY CLI GUIDE
- Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 - CATEGORY OFFENSE INVESTIGATION GUIDE REV 1
- Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 - SNMP AGENT GUIDE REV 1
- Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 R2 - LOG MANAGEMENT ADMINISTRATION GUIDE REV 1
- Juniper STRM LOG MANAGEMENT 2008.2 - S 6-2008
- Juniper MEDIA FLOW CONTROLLER 2.0.4 -
- Juniper MEDIA FLOW MANAGER 2.0.2 - ADMINISTRATOR S GUIDE AND CLI
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - CONFIGURING INTRUSION DETECTION PREVENTION DEVICES GUIDE REV 01
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - API GUIDE REV 1
- Juniper NETWORK AND SECURITY MANAGER 2010.3 - M-SERIES AND MX-SERIES DEVICES GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.2 - ADMINISTRATION GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.3 - ADMINISTRATION GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - CONFIGURING J SERIES SERVICES ROUTERS AND SRX SERIES SERVICES GATEWAYS GUIDE REV
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - ADMININISTRATION GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - M-SERIES AND MX-SERIES DEVICES GUIDE REV 1
- Juniper NETWORK AND SECURITY MANAGER 2010.3
Need help?
Do you have a question about the SECURITY THREAT RESPONSE MANAGER 2008.2 - EVENT CATEGORY CORRELATION REFERENCE GUIDE REV 1 and is the answer not in the manual?
Questions and answers