Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 Administration Manual page 176
Strm administration guide
Hide thumbs
Also See for SECURITY THREAT RESPONSE MANAGER 2008.2:
- Manual (228 pages) ,
- Getting started (14 pages) ,
- Release note (11 pages)
Table of Contents
Advertisement
168
M
V
ANAGING
IEWS
Table 8-22 Element Options (continued)
Parameter
Description
Property
Using the drop-down list box, select the flow property. Options include:
ClassL2L - Traffic between two local objects on your network.
•
ClassL2R - Traffic between one local object and one remote object.
•
ClassOther - Traffic between hosts not defined in your network.
•
SuperFlow - Flow of traffic that is an aggregate of the number of
•
flows that have a similar predetermined set of elements, such as
protocol, source bytes, source packets, source host, or destination
network. In some cases, other properties may be similar, such as
destination ports, TCP/IP flags, ICMP types, and code; however, the
destination hosts can differ.
SuperFlowTypeA - SuperFlow identified as one host destined to
•
many host.
SuperFlowTypeB - SuperFlow identified as many hosts destined to
•
one host.
SuperFlowTypeC - SuperFlow identified as one host to one host.
•
StealthPorts - Traffic located outside the normal application ports.
•
SrcLocal - Traffic originating from a local source.
•
DstLocal - Traffic originating from a remote network destined for
•
your network.
NoAppDetect - Traffic with zero application detection that may be
•
caused by not enough payload; or, traffic originating from ICMP
messages.
UnknownApp - Non-defined application traffic.
•
FlowShapeInOnly - Traffic or flows destined in the network (from
•
the Flowtype View).
FlowShapeOutOnly - Traffic or flows destined out from the network
•
(from the Flowtype View).
Click Add.
Port Element Type
Name
Specify the element name.
Object
Using the drop-down list box, select the targeted traffic flow. Options
include: Src (Source), Dst (Destination), Local, Remote, and Total.
Value
Specify the port number. Click Add.
CIDR Element Type
Name
Specify the element name.
Object
Using the drop-down list box, select the targeted traffic flow. Options
include: Src (Source), Dst (Destination), Local, Remote, and Total.
Value
Enter the IP address or CIDR range. Click Add.
Application ID Element Type
Name
Specify the element name.
STRM Administration Guide
Advertisement
Table of Contents
Related Manuals for Juniper SECURITY THREAT RESPONSE MANAGER 2008.2
Related Products for Juniper SECURITY THREAT RESPONSE MANAGER 2008.2
- Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 - AQL EVENT AND FLOW QUERY CLI GUIDE
- Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 - EVENT CATEGORY CORRELATION REV 1
- Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 - SNMP AGENT GUIDE REV 1
- Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 R2 - LOG MANAGEMENT ADMINISTRATION GUIDE REV 1
- Juniper STRM LOG MANAGEMENT 2008.2 - S 6-2008
- Juniper MEDIA FLOW CONTROLLER 2.0.4 -
- Juniper MEDIA FLOW MANAGER 2.0.2 - ADMINISTRATOR S GUIDE AND CLI
- Juniper NETWORK AND SECURITY MANAGER 2010.3 - CONFIGURING INTRUSION DETECTION AND PREVENTION GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - CONFIGURING INTRUSION DETECTION PREVENTION DEVICES GUIDE REV 01
- Juniper NETWORK AND SECURITY MANAGER 2010.3 - M-SERIES AND MX-SERIES DEVICES GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.3 - ADMINISTRATION GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - NSMXPRESS SERIES II REV 1
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - REV1
- Juniper MEDIA FLOW CONTROLLER 2.0.5
- Juniper NETWORK AND SECURITY MANAGER 2010.3
- Juniper 200 Series