Overview of System features
Component Management
Although the appliance can record many types of events in the logs, normally only the most serious
events are needed.
Table 275 Option definitions
Option
Protocol events
Communication
events
Detection events
Advanced
Component Management
The component management area of the user interface enables you to view the status of your
updates, and to specify your Package Installer and ePolicy Orchestrator options.
Contents
Update Status
Package Installer
ePO
Update Status
Use this page to check that each scanning component is using the most up-to-date threat detection
data to maintain your appliance security.
Benefits of using Update Status
From the Update Status page, you can manage updates for the following scanning components:
276
McAfee Email and Web Security Appliances 5.6.0 Product Guide
Definition
Provides a list of types of protocol events.
High severity events include a suspected denial-of-service attack.
Provides a list of types of communication events.
High severity events include failure of a scanner.
Provides a choice of events, such as virus detections.
When clicked, opens another window where you can examine the settings for each
event and choose which events to log or ignore. The information includes:
Enabled — Whether the event is being recorded in the log now.
ID — The event number, such as 50012, which is recorded in the log with the time
and date of the event.
Level — A symbol that indicates the severity of the event:
•
— High Severity. We recommend that this event is recorded in the log.
•
— Medium Severity
•
— Low Severity.
High Volume — A symbol that indicates how often this event occurs:
•
— The event can generate a high volume of log records.
Description — A description of the event, such as Quarantine.
System | Component Management | Update Status