Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 R2 - LOG MANAGEMENT REV 1 Manual page 50
Strm log management users guide
Hide thumbs
Also See for SECURITY THREAT RESPONSE MANAGER 2008.2 R2 - LOG MANAGEMENT REV 1:
- Manual (36 pages) ,
- Administration manual (92 pages) ,
- Manual (246 pages)
Table of Contents
Advertisement
44
C
R
ONFIGURING
ULES
Table 4-1 Functions Group (continued)
Test
Description
Multi-Rule
You can also use building
Function
blocks or existing rules to
populate this test. Allows you to
detect a number of specific rules
for a specific IP address or port
followed by a number of specific
rules for a specific port or IP
address.
Default Test Name
when at least this
number of these
rules, in order, with
the same destination
IP address/port
followed by at least
this number of these
rules in order with the
same IP address/port
from the previous
source, within this
many time intervals
STRM Log Management Users Guide
Parameters
Configure the following parameters:
this number - Specify the number
•
of rules you wish this test to
consider.
rules - Specify the rules you wish
•
this test to consider.
in - Specify if you wish this test to
•
consider rules in a specific order.
destination - Specify whether you
•
wish this test to consider
destination or source IP address or
port.
IP address/port - Specify if you
•
wish this test to consider the IP
address or port.
this number - Specify the number
•
of rules you wish this test to
consider.
rules - Specify the rules you wish
•
this test to consider.
in - Specify if you wish this test to
•
consider rules in a specific order.
IP address/port - Specify if you
•
wish this test to consider the IP
address or port.
source - Specify if you wish this
•
test to consider source or
destination.
this many - Specify the number of
•
time intervals you wish this rule to
consider.
time intervals - Specify the time
•
interval you wish this rule to
consider. The options are:
seconds, minutes, hours, or days.
Advertisement
Table of Contents
Related Manuals for Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 R2 - LOG MANAGEMENT REV 1
Related Products for Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 R2 - LOG MANAGEMENT REV 1
- Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 - AQL EVENT AND FLOW QUERY CLI GUIDE
- Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 - CATEGORY OFFENSE INVESTIGATION GUIDE REV 1
- Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 - EVENT CATEGORY CORRELATION REV 1
- Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 - SNMP AGENT GUIDE REV 1
- Juniper STRM LOG MANAGEMENT 2008.2 - S 6-2008
- Juniper MEDIA FLOW CONTROLLER 2.0.4 -
- Juniper MEDIA FLOW MANAGER 2.0.2 - ADMINISTRATOR S GUIDE AND CLI
- Juniper NETWORK AND SECURITY MANAGER 2010.3 - CONFIGURING INTRUSION DETECTION AND PREVENTION GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - CONFIGURING INTRUSION DETECTION PREVENTION DEVICES GUIDE REV 01
- Juniper NETWORK AND SECURITY MANAGER 2010.3 - M-SERIES AND MX-SERIES DEVICES GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.3 - ADMINISTRATION GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - NSMXPRESS SERIES II REV 1
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - REV1
- Juniper MEDIA FLOW CONTROLLER 2.0.5
- Juniper NETWORK AND SECURITY MANAGER 2010.3
- Juniper 200 Series