Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 R2 - LOG MANAGEMENT ADMINISTRATION GUIDE REV 1 Administration Manual page 34

Strm log management administration guide

Hide thumbs Also See for SECURITY THREAT RESPONSE MANAGER 2008.2 R2 - LOG MANAGEMENT ADMINISTRATION GUIDE REV 1:

Manual (36 pages)

Manual (130 pages)

Manual (246 pages)

Table Of Contents

Table of Contents

STRM L

ETTING

ANAGEMENT

Table 3-3 System Settings Parameters (continued)

Parameter

Audit Log Enable

Coalescing Events

Store Event Payload

Global Iptables Access

Database Settings

User Data Files

Database Storage

Location

Ariel Database Settings

Device Log Storage

Location

Device Log Data

Retention Period

Maximum Real Time

Results

Reporting Max Matched

Results

Command Line Max

Matched Results

Web Execution Time Limit Specify the maximum amount of time, in seconds, you

STRM Log Management Administration Guide

Description

Enables or disables the ability to collect audit logs. You

can view audit log information using the Event Viewer.

The default is Yes.

Enables or disables the ability for a sensor device to

coalesce (bundle) events. This value applies to all sensor

devices. However, if you wish to alter this value for a

specific sensor device, edit the Coalescing Event

parameter in the sensor device configuration. For more

information, see the Managing Sensor Devices Guide.

The default is Yes.

Enables or disables the ability for a sensor device to store

event payload information. This value applies to all auto

detected sensor devices. However, if you wish to alter this

value for a specific sensor device, edit the Event Payload

parameter in the sensor device configuration. For more

information, see the Managing Sensor Devices Guide.

The default is Yes.

Specify the IP address of a non-Console system that does

not have IP tables configuration to which you wish to

enable direct access. To enter multiple systems, enter a

comma separated list of IP addresses.

Specify the location of the user profiles. The default is

/store/users.

Specify the location of the database files. The default

location is /store/db.

Specify the location that you wish to store the device log

information. The default location is /store/ariel/events.

Specify the amount of time that you wish to store the

device log data. The default is 30 days.

Specify the maximum number of results you wish to view

in the Event Viewer and Flow Viewer. The default is

10000.

Specify the maximum number of results you wish a report

to return. This value applies to the search results in the

Event Viewer. The default is 1000000.

Specify the maximum number of results you wish the

command line to return. The default is 0.

wish a query in the interface to process before a time out

occurs. This value applies to the search results in the

Event Viewer and Flow Viewer. The default is 600

seconds.

Table of Contents

Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 R2 - LOG MANAGEMENT ADMINISTRATION GUIDE REV 1 Administration Manual page 34

Related Manuals for Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 R2 - LOG MANAGEMENT ADMINISTRATION GUIDE REV 1

Related Products for Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 R2 - LOG MANAGEMENT ADMINISTRATION GUIDE REV 1

Table of Contents