Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 Administration Manual page 114
Strm administration guide
Hide thumbs
Also See for SECURITY THREAT RESPONSE MANAGER 2008.2:
- Manual (228 pages) ,
- Getting started (14 pages) ,
- Release note (11 pages)
Table of Contents
Advertisement
106
U
D
SING THE
EPLOYMENT
Step 6
Step 7
Configuring an
Update Daemon
Step 1
Step 2
E
DITOR
Table 5-11 Classification Engine Parameters (continued)
Parameter
Process Defined Views
Only
Branch Filtering
Network Object Limit
Asset Profile Threshold Specify the maximum number of asset profiles you wish to
Remote Host Cache
Clear Interval
Click Save.
The deployment map appears.
Repeat for all Classification Engines in your deployment you wish to configure.
Once the Classification Engine has processed the flows for an interval, the Update
Daemon stores the database and TopN data. Depending on the size of your
deployment, you may have multiple Update Daemons.
To configure an Update Daemon:
In either the Flow or System View, select the Update Daemon you wish to
configure.
From the menu, select Actions > Configure.
Note: You can also use the right mouse button (right-click) to access the Actions
menu items.
The Update Daemon Configuration window appears.
STRM Administration Guide
Description
If you are using a distributed processing Console, specify
the processing information. This requires each involved
managed host to have a list of views to process. For
assistance, contact Juniper Networks Customer Support.
By default, branch filtering is disabled and all traffic is
forwarded to all Classification Engines. Filtering does not
begin unless the Flow Processor receives a branch filter
definition from the Classification Engine.
Specify the branch filter using the following syntax:
brc1,brc2,..,brc-N
Where:
brc-1,brc-2,....,brc-N specifies any branch of the local
network hierarchy. If a specified branch does not belong to
the network hierarchy, the branch is ignored.
For example:
ComputingServices,Manufacturing_facilites
Corporate_HQ,other
Specify the maximum number of network objects you wish to
allow.
monitor. The default is 25,000.
Specify the period of time, in seconds, that you wish to retain
the log files, which are stored result of a remote view lookup.
Advertisement
Table of Contents
Related Manuals for Juniper SECURITY THREAT RESPONSE MANAGER 2008.2
Related Products for Juniper SECURITY THREAT RESPONSE MANAGER 2008.2
- Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 - AQL EVENT AND FLOW QUERY CLI GUIDE
- Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 - EVENT CATEGORY CORRELATION REV 1
- Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 - SNMP AGENT GUIDE REV 1
- Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 R2 - LOG MANAGEMENT ADMINISTRATION GUIDE REV 1
- Juniper STRM LOG MANAGEMENT 2008.2 - S 6-2008
- Juniper MEDIA FLOW CONTROLLER 2.0.4 -
- Juniper MEDIA FLOW MANAGER 2.0.2 - ADMINISTRATOR S GUIDE AND CLI
- Juniper NETWORK AND SECURITY MANAGER 2010.3 - CONFIGURING INTRUSION DETECTION AND PREVENTION GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - CONFIGURING INTRUSION DETECTION PREVENTION DEVICES GUIDE REV 01
- Juniper NETWORK AND SECURITY MANAGER 2010.3 - M-SERIES AND MX-SERIES DEVICES GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.3 - ADMINISTRATION GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - NSMXPRESS SERIES II REV 1
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - REV1
- Juniper MEDIA FLOW CONTROLLER 2.0.5
- Juniper NETWORK AND SECURITY MANAGER 2010.3
- Juniper 200 Series