Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 Administration Manual page 358
Strm administration guide
Hide thumbs
Also See for SECURITY THREAT RESPONSE MANAGER 2008.2:
- Manual (228 pages) ,
- Getting started (14 pages) ,
- Release note (11 pages)
Table of Contents
Advertisement
350
ISP T
D
EMPLATE
EFAULTS
Table D-10 Default Building Blocks (continued)
Building Block
Default-BB-FalsePositive:
Global False Positive
Events
Default-BB-FalsePositive:
Internal Attacker to
Internal Target False
Positives
Default-BB-FalsePositive:
Internal Attacker to
Remote Target False
Positives
Default-BB-FalsePositive:
LDAP Server False
Positive Categories
Default-BB-FalsePositive:
LDAP Server False
Positive Events
Default-BB-FalsePositive:
Mail Server False Positive
Categories
Default-BB-FalsePositive:
Mail Server False Positive
Events
Default-BB-FalsePositive:
Network Management
Servers Recon
Default-BB-FalsePositive:
Proxy Server False
Positive Categories
Default-BB-FalsePositive:
Proxy Server False
Positive Events
Block
Type
Description
Event Edit this BB to include any event QIDs that
you wish to ignore.
Event Edit this BB to define all the false positive
QIDs that occur to or from Local-to-Local
(L2L) based servers.
Event Edit this BB to define all the false positive
QIDs that occur to or from Local-to-Remote
(L2R) based servers.
Event Edit this BB to define all the false positive
categories that occur to or from LDAP
servers that are defined in the
Default-BB-HostDefinition: LDAP Servers
building block.
Event Edit this BB to define all the false positive
QIDs that occur to or from LDAP servers
that are defined in the
Default-BB-HostDefinition: LDAP Servers
building block.
Event Edit this BB to define all the false positive
categories that occur to or from mail
servers that are defined in the
Default-BB-HostDefinition: Mail Servers
building block.
Event Edit this BB to define all the false positive
QIDs that occur to or from mail servers that
are defined in the
Default-BB-HostDefinition: Mail Servers
building block.
Edit this BB to define all the false positive
categories that occur to or from network
management servers that are defined in the
Default-BB-HostDefinition: Network
Management Servers building block.
Event Edit this BB to define all the false positive
categories that occur to or from proxy
servers that are defined in the
Default-BB-HostDefinition: Proxy Servers
building block.
Event Edit this BB to define all the false positive
QIDs that occur to or from proxy servers
that are defined in the
Default-BB-HostDefinition: Proxy Servers
building block.
STRM Administration Guide
Associated Building Blocks,
if applicable
Default-BB-HostDefinition:
LDAP Servers
Default-BB-HostDefinition:
LDAP Servers
Default-BB-HostDefinition: Mail
Servers
Default-BB-HostDefinition: Mail
Servers
Default-BB-HostDefinition:
Network Management Servers
Default-BB-HostDefinition:
Proxy Servers
Default-BB-HostDefinition:
Proxy Servers
Advertisement
Table of Contents
Related Manuals for Juniper SECURITY THREAT RESPONSE MANAGER 2008.2
Related Products for Juniper SECURITY THREAT RESPONSE MANAGER 2008.2
- Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 - AQL EVENT AND FLOW QUERY CLI GUIDE
- Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 - EVENT CATEGORY CORRELATION REV 1
- Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 - SNMP AGENT GUIDE REV 1
- Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 R2 - LOG MANAGEMENT ADMINISTRATION GUIDE REV 1
- Juniper STRM LOG MANAGEMENT 2008.2 - S 6-2008
- Juniper MEDIA FLOW CONTROLLER 2.0.4 -
- Juniper MEDIA FLOW MANAGER 2.0.2 - ADMINISTRATOR S GUIDE AND CLI
- Juniper NETWORK AND SECURITY MANAGER 2010.3 - CONFIGURING INTRUSION DETECTION AND PREVENTION GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - CONFIGURING INTRUSION DETECTION PREVENTION DEVICES GUIDE REV 01
- Juniper NETWORK AND SECURITY MANAGER 2010.3 - M-SERIES AND MX-SERIES DEVICES GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.3 - ADMINISTRATION GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - NSMXPRESS SERIES II REV 1
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - REV1
- Juniper MEDIA FLOW CONTROLLER 2.0.5
- Juniper NETWORK AND SECURITY MANAGER 2010.3
- Juniper 200 Series