About This Guide; Intended Audience; Version Support; Related Documents - Enterasys Intrusion Prevention System Reporting Manual

The Enterasys
Detection System (IDS), active response, and intrusion prevention. This guide describes the
reports available with Enterasys IPS version 7.5 or higher using the web-based GUI. The first part
of the book describes the current reporting tools. Legacy tools are described in the last chapter of
the book.
Reporting tools available using the command line are described in the Enterasys Intrusion
Prevention System Command Line Tools Reference.

Intended Audience

This document is intended for analysts who are responsible for generating reports about intrusive
attacks.

Version Support

This guide supports Enterasys Intrusion Prevention System Version 7.5, and higher.

Related Documents

The Enterasys IPS user documentation listed below is available from
https://extranet.enterasys.com/downloads.
Enterasys IPS Document Title
Appliance Hardware Installation Guide
Configuration Guide
Creating Host Sensor Policies
Creating Network Sensor Policies and
Signatures
Analysis and Reporting Guide
Command Line Tools Reference
®
Intrusion Prevention System (IPS) is a solution consisting of an Intrusion

About This Guide

Description
Describes how to set up the Enterasys IPS appliances.
Describes how to configure Enterasys IPS using GUI
management tools. It also describes the placement of Enterasys
IPS components within your network.
Describes how to create custom Host Sensor policies.
Describes how to create custom Network Sensor policies and
signatures.
Describes the Enterasys IPS reporting tools. Reporting tools
available from the command line are described in the Command
Line Tools Reference.
Describes the forensics command line tools you can use to
analyze the events database or a single dragon.db file.
Enterasys IPS Analysis and Reporting Guide ix