Table of Contents
Advertisement
Using the Realtime Console
is from a Dragon Network Sensor or Dragon Host Sensor engine) displays the raw event
information including packet or log data.
Pre-Event Collection
You can view pre-event packets by clicking the Pre-event Collection column for an event. This
brings you to the pre-event packet information. Clicking the Packet Data column provides the
specific packet's information.
Figure 11-9
EventsByGroup
This event summary lists all of the active event groups and the number of events in each group.
All event groups are listed, even if no events are associated with that group.
EventsByNetworkSensor
A list of all active Dragon Network Sensors are output for event summary, as shown in
Figure
11-10. Only Dragon sensors that have an active event are listed. Clicking on a Dragon
sensor name lists an event summary of events only from that engine.
Figure 11-10
11-10 Enterasys IPS Analysis and Reporting Guide
Pre-Event Packet Data
Realtime EventsByNetworkSensor
Legacy Reporting
Advertisement
Table of Contents
Need help?
Do you have a question about the Intrusion Prevention System and is the answer not in the manual?
Questions and answers