Viewing Raw Events - Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 R2 - LOG MANAGEMENT REV 1 Manual
Strm log management users guide
Hide thumbs
Also See for SECURITY THREAT RESPONSE MANAGER 2008.2 R2 - LOG MANAGEMENT REV 1:
- Manual (36 pages) ,
- Administration manual (92 pages) ,
- Manual (246 pages)
Table of Contents
Advertisement
20
U
E
SING THE
VENT
Viewing Raw Events
Step 1
Step 2
V
IEWER
Table 3-3 Event Details (continued)
Parameter
Device
Event Count
Start Time
End Time
Device Time
Payload
Matched Custom
Rules
Annotations
The event details provides the following functions:
Table 3-4 Event Details Toolbar
Icon
To view raw event data:
Click the Event Viewer tab.
The Event Viewer window appears.
From the Display drop-down list box, select Raw Events.
Raw event data appears
STRM Log Management Users Guide
Description
Specifies the device that sent the event to STRM Log
Management.
Specifies the total number of bundled events that constitute this
normalized event. Events are bundled when many of the same
type of event for the same source and destination IP address are
seen within a short period of time.
Specifies the time of the first event, as reported to STRM Log
Management by the device.
Specifies the end time of the last event, as reported to STRM Log
Management by the device.
Specifies the system time of the device.
Specifies payload content from the event. To view the payload in
Hex, click Hex. To view the payload in UTF, click UTF. To view in
Base64, click Base64.
Specifies custom rules that have matched to this event. For more
information on rules, see the STRM Log Management
Administration Guide.
Specifies the annotation or notes for this event.
Function
Allows you to return to the list of events.
Allows you to edit the event mapping. For more information,
Modifying Event Mapping
see
Allows you to print the event details.
.
Advertisement
Table of Contents
