Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 R2 - LOG MANAGEMENT REV 1 Manual page 114
Strm log management users guide
Hide thumbs
Also See for SECURITY THREAT RESPONSE MANAGER 2008.2 R2 - LOG MANAGEMENT REV 1:
- Manual (36 pages) ,
- Administration manual (92 pages) ,
- Manual (246 pages)
Table of Contents
Advertisement
108
D
R
EFAULT
ULES AND
Table B-7 Default Building Blocks (continued)
Building Block
Default-BB-FalsePositive:
Virus Definition Update
Categories
Default-BB-FalsePositive:
Web Server False
Positive Categories
Default-BB-FalsePositive:
Web Server False
Positive Events
Default-BB-FalsePositive:
Windows Server False
Positive Categories Local
Default-BB-FalsePositive:
Windows Server False
Positive Events
Default-BB-Host
Definition: Database
Servers
Default-BB-Host
Definition: DHCP Servers
Default-BB-Host
Definition: DNS Servers
B
B
UILDING
LOCKS
Block
Group
Type
False
Event Edit this BB to define all the false
Positive
False
Event Edit this BB to define all the false
Positive
False
Event Edit this BB to define all the false
Positive
False
Event Edit this BB to define all the false
Positive
False
Event Edit this BB to define all the false
Positive
Host
Event Edit this BB to define typical
Definitions
Host
Event Edit this BB to define typical DHCP
Definitions
Host
Event Edit this BB to define typical DNS
Definitions
STRM Log Management Users Guide
Description
positive QIDs that occur to or from
virus definition or other automatic
update hosts that are defined in
the Default-BB-HostDefinition:
Virus Definition and Other Update
Servers building block.
positive categories that occur to or
from web servers that are defined
in the Default-BB-HostDefinition:
Web Servers building block.
positive QIDs that occur to or from
Web servers that are defined in the
Default-BB-HostDefinition: Web
Servers building block.
positive categories that occur to or
from Windows servers that are
defined in the
Default-BB-HostDefinition:
Windows Servers building block.
positive QIDs that occur to or from
Windows servers that are defined
in the Default-BB-HostDefinition:
Windows Servers building block.
database servers.
servers.
servers.
Associated Building
Blocks, if applicable
Default-BB-HostDefinition:
Virus Definition
Default-BB-HostDefinition:
Web Servers
Default-BB-HostDefinition:
Web Servers
Default-BB-HostDefinition:
Windows Servers
Default-BB-HostDefinition:
Windows Servers
Default-BB-FalsePositive:
Database Server False
Positive Categories
Default-BB-FalsePositive:
Database Server False
Positive Events
Default-BB-False Positive:
DHCP Server False
Positives Categories
Default-BB-FalsePositve:
DHCP Server False
Positive Events
Default-BB-False Positive:
DNS Server False
Positives Categories
Default-BB-FalsePositve:
DNS Server False
Positive Events
Advertisement
Table of Contents
Related Manuals for Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 R2 - LOG MANAGEMENT REV 1
Related Products for Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 R2 - LOG MANAGEMENT REV 1
- Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 - AQL EVENT AND FLOW QUERY CLI GUIDE
- Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 - CATEGORY OFFENSE INVESTIGATION GUIDE REV 1
- Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 - EVENT CATEGORY CORRELATION REV 1
- Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 - SNMP AGENT GUIDE REV 1
- Juniper STRM LOG MANAGEMENT 2008.2 - S 6-2008
- Juniper MEDIA FLOW CONTROLLER 2.0.4 -
- Juniper MEDIA FLOW MANAGER 2.0.2 - ADMINISTRATOR S GUIDE AND CLI
- Juniper NETWORK AND SECURITY MANAGER 2010.3 - CONFIGURING INTRUSION DETECTION AND PREVENTION GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - CONFIGURING INTRUSION DETECTION PREVENTION DEVICES GUIDE REV 01
- Juniper NETWORK AND SECURITY MANAGER 2010.3 - M-SERIES AND MX-SERIES DEVICES GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.3 - ADMINISTRATION GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - NSMXPRESS SERIES II REV 1
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - REV1
- Juniper MEDIA FLOW CONTROLLER 2.0.5
- Juniper NETWORK AND SECURITY MANAGER 2010.3
- Juniper 200 Series