Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 R2 - LOG MANAGEMENT REV 1 Manual page 112
Strm log management users guide
Hide thumbs
Also See for SECURITY THREAT RESPONSE MANAGER 2008.2 R2 - LOG MANAGEMENT REV 1:
- Manual (36 pages) ,
- Administration manual (92 pages) ,
- Manual (246 pages)
Table of Contents
Advertisement
106
D
R
EFAULT
ULES AND
Table B-7 Default Building Blocks (continued)
Building Block
Default-BB-FalsePositive:
Internal Attacker to
Internal Target False
Positives
Default-BB-FalsePositive:
Internal Attacker to
Remote Target False
Positives
Default-BB-FalsePositive:
LDAP Server False
Positive Categories
Default-BB-FalsePositive:
LDAP Server False
Positive Events
Default-BB-FalsePositive:
Mail Server False Positive
Categories
Default-BB-FalsePositive:
Mail Server False Positive
Events
Default-BB-FalsePositive:
Network Management
Servers Recon
Default-BB-FalsePositive:
Proxy Server False
Positive Categories
Default-BB-FalsePositive:
Proxy Server False
Positive Events
B
B
UILDING
LOCKS
Block
Group
Type
False
Event Edit this BB to define all the false
Positive
False
Event Edit this BB to define all the false
Positive
False
Event Edit this BB to define all the false
Positive
False
Event Edit this BB to define all the false
Positive
False
Event Edit this BB to define all the false
Positive
False
Event Edit this BB to define all the false
Positive
False
Event Edit this BB to define all the false
Positive
False
Event Edit this BB to define all the false
Positive
False
Event Edit this BB to define all the false
Positive
STRM Log Management Users Guide
Description
positive QIDs that occur to or from
Local-to-Local (L2L) based
servers.
positive QIDs that occur to or from
Local-to-Remote (L2R) based
servers.
positive categories that occur to or
from LDAP servers that are
defined in the
Default-BB-HostDefinition: LDAP
Servers building block.
positive QIDs that occur to or from
LDAP servers that are defined in
the Default-BB-HostDefinition:
LDAP Servers building block.
positive categories that occur to or
from mail servers that are defined
in the Default-BB-HostDefinition:
Mail Servers building block.
positive QIDs that occur to or from
mail servers that are defined in the
Default-BB-HostDefinition: Mail
Servers building block.
positive categories that occur to or
from network management servers
that are defined in the
Default-BB-HostDefinition:
Network Management Servers
building block.
positive categories that occur to or
from proxy servers that are defined
in the Default-BB-HostDefinition:
Proxy Servers building block.
positive QIDs that occur to or from
proxy servers that are defined in
the Default-BB-HostDefinition:
Proxy Servers building block.
Associated Building
Blocks, if applicable
Default-BB-HostDefinition:
LDAP Servers
Default-BB-HostDefinition:
LDAP Servers
Default-BB-HostDefinition:
Mail Servers
Default-BB-HostDefinition:
Mail Servers
Default-BB-HostDefinition:
Network Management
Servers
Default-BB-HostDefinition:
Proxy Servers
Default-BB-HostDefinition:
Proxy Servers
Advertisement
Table of Contents
Related Manuals for Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 R2 - LOG MANAGEMENT REV 1
Related Products for Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 R2 - LOG MANAGEMENT REV 1
- Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 - AQL EVENT AND FLOW QUERY CLI GUIDE
- Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 - CATEGORY OFFENSE INVESTIGATION GUIDE REV 1
- Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 - EVENT CATEGORY CORRELATION REV 1
- Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 - SNMP AGENT GUIDE REV 1
- Juniper STRM LOG MANAGEMENT 2008.2 - S 6-2008
- Juniper MEDIA FLOW CONTROLLER 2.0.4 -
- Juniper MEDIA FLOW MANAGER 2.0.2 - ADMINISTRATOR S GUIDE AND CLI
- Juniper NETWORK AND SECURITY MANAGER 2010.3 - CONFIGURING INTRUSION DETECTION AND PREVENTION GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - CONFIGURING INTRUSION DETECTION PREVENTION DEVICES GUIDE REV 01
- Juniper NETWORK AND SECURITY MANAGER 2010.3 - M-SERIES AND MX-SERIES DEVICES GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.3 - ADMINISTRATION GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - NSMXPRESS SERIES II REV 1
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - REV1
- Juniper MEDIA FLOW CONTROLLER 2.0.5
- Juniper NETWORK AND SECURITY MANAGER 2010.3
- Juniper 200 Series