376 Index
Event Correlation ‘Source IP’ Weight
setting node parameters 216
Event Correlation ‘Source Port’ Weight
setting node parameters 217
Event Delay Time
setting sensor parameters 167
Event Destination Hashes
setting node parameters 312
Event Dispatch Protocol.
See
EDP
Event Message Hashes
setting node parameters 312
Event Queue Length
setting node parameters 313
Event Rate Throttle
setting node parameters 314
event source
response rules 139
event target
response rules 136
event types 136
adjusting the view by columns 119
searching response rules 134
viewing details 119
Event Writer File
setting node parameters 254
events
about event dispatch protocol 29
about event stream provider.
See
ESP
annotating 208
annotating an instance 127
annotating policies 126
availability monitor 287
base 229
copying details 210
copying incident’s top 210
customizing annotation templates 208
customizing responses 147
data displayed 202, 204
destination report 236
detail reports 236
email notifying 142
enabling logging 122
enabling SNMP notifications 145
examining data 196
filtering 205, 206
filtering tables 205, 206
integrating third-party 282
interpreting severity and confidence
levels 197
events (cont.)
list reports 236
modifying the view 47
modifying the view of types 47
next action parameter 140
none option 142
operational 199
protocol 237
report types 229
reporting
per day 233
per hour 233
per month 233
response parameter 141
searching for types 117
selecting columns 203
SNMP notification 145
sorting 192
sorting by classful destination 233
sorting by classful source 234
sorting by protocol 234
sorting by vendor 234
source parameter 139, 140
source reports 236
target parameter 136
top destinations 231
top report type 231
top sources 231
TrackBack function 147
type parameters 136
viewing descriptions 199
viewing details 197
viewing non-logged 122
viewing top of incident 195
viewing top-level 197
export flow action
response rules 153
exporting
about SQL 325
data to syslog 260
log data 254
saved reports 227
to file 254
to SESA 255
to SQL 257
to syslog 261
external sensors
queries from TrackBack 106
Summary of Contents for 10521146 - Network Security 7120
Page 1: ...Symantec Network Security Administration Guide...
Page 12: ...12 Contents Index...
Page 14: ...14...
Page 70: ...70...
Page 110: ...110 Populating the topology database Adding nodes and objects...
Page 158: ...158 Responding Managing flow alert rules...
Page 188: ...188...
Page 242: ...242 Reporting Playing recorded traffic...
Page 268: ...268 Managing log files Exporting data...
Page 316: ...316 Advanced configuration Configuring advanced parameters...
Page 318: ...318...
Page 338: ...338 SQL reference Using MySQL tables...
Page 366: ...366 Glossary...
Page 392: ...392 Index...