Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 R2 - REV1 Manual page 77

Table 4-18 Sentry Attributes Parameters (continued)
Parameter
Weight
Save as package
Minimum Activations
Before Alert
Delay Between Alerts
Maximum responses per
event
Sharing
Click Next.
Step 11
The Sentry Response window appears.
Enter values for the following parameters:
Step 12
Table 4-19 Sentry Response Parameters
Parameter Sub-Parameter Action
Email Email Subject
Email
Recipient(s)
Format
Action
Specify the relative importance of this sentry. This
determines the ranking that the generated event displays
in the Offense Manager.
STRM uses the following formula to calculate the weight:
(sentry weight + network weight + object weight)/3/time
difference
Where time difference is:
1 + (second since the sentry alerted / 10,000,000,000)
Select the check box if you wish to save this sentry as a
package to use with other sentries. By default, the check
box is clear. Specify the following:
Package Name - Specify the name you wish to assign
•
to this package.
Package Description - Specify a description for the
•
package.
Share Package - Click Share Package to share this
•
package with other STRM users.
Specify the minimum number of times you wish this
activity to occur before an alert generates.
Specify the number of intervals, after of the first
occurrence of this alert, before the next occurrence of this
event.
Specify the maximum number of times you wish this event
to generate.
Click Share Sentry to access the Select Users window,
which allows you to indicate any users you wish to share
this sentry.
Specify a subject for the notification e-mail sent by the
sentry engine.
Specify the recipient(s) of the notification e-mail sent
by the sentry engine. Separate multiple entries with a
comma.
Specify the amount of text included in the e-mail.
Options include: Subject Only, Brief, Detailed - Text,
Detailed - HTML.
STRM Users Guide
Creating a Sentry 71