TO UNSUBSCRIBE: email "unsubscribe issforum" in the body of your message to
majordomoiss.net Contact issforum-owneriss.net for help with any problems!
----------------------------------------------------------------------------

While generating reports, it is possible to view the reports only in GMT.
The option "view in local time" is just for the date/time criteria window
alone. This will not reflect in the report.

-Gautam

>
>
> >From: "Sheeks, John R." <sheeksjgordon.army.mil>
> >To: 'Gautam Ashok' <gauta_newhotmail.com>
> >Subject: RE: IDS - need clarfications
> >Date: Thu, 2 May 2002 08:03:40 -0400
> >
> >HI,
> >
> >1. No, there is no color code to distinguish the sensors like in
>previous
> >versions. It only allows you to identify it with a seperate color.
> >
> >2. You should limit the console to 10-20 sensors
> > a. None
> > b. You should have 2 consoles to monitor them
> > c. Try eSecurity or Tripwire to consolidate and allow for realtime
> >intrusion detection and rapid response.
> >
> >3. Look at your policies and ensure that they are configured correctly.
> >
> >
> >4. Go to the 2d tab at the top of the reports screen, place a check in
>the
> >block (use local time and save the data.
> >
> >5. If possible, what database are you using, MSDE2000, MSSQL or Oracle.
> >
> >
> >John R. Sheeks
> >Civilian, Contractor
> >IASO & Network Security Analyst
> >South-Theater Network Operations Security Center
> >93rd Signal Brigade
> >Fort Gordon, Georgia 30905
> >Email: SheeksJS-TNOSC.Army.Mil
> >S-Mail: SheeksJS-TNOSC.Army.Smil.Mil
> >(706) 791-3694/2222
> >DSN: 780-3694/2222
> >
> >
> >
> >
> >-----Original Message-----
> >From: Gautam Ashok [mailto:gauta_newhotmail.com]
> >Sent: Wednesday, May 01, 2002 9:59 AM
> >To: issforumiss.net
> >Subject: IDS - need clarfications
> >
> >
> >
> >TO UNSUBSCRIBE: email "unsubscribe issforum" in the body of your message
>to
> >majordomoiss.net Contact issforum-owneriss.net for help with any
> >problems!
> >---------------------------------------------------------------------------
>-
> >
> >Hi,
> >1. In RealSecure 6.5, on the console, the sensor and the event collector
> >are
> >
> >displayed in various colors, ie sometimes in red, green blue etc. Is
>there
> >any color code available?
> >
> >2. Consider an enterprise network, remote offices are linked with leased
> >lines, queries are
> >
> >a) will there be any issue in monitoring various remote office's sensors
> >from a central location?
> >
> >b) Any limitations in monitoring, say around 30-40 sensors(in WAN) from a
> >single console located central office?
> >
> >c) To monitor around 30-40 sensors, which database to be used/suggested?
> >
> >3. In RS6.5, user defined events are not working, any work arounds?
> >
> >4. In RS6.5, while generating reports, there is an option to generate the
> >report in local time, but even if it is checked, the output comes only in
> >GMT, any solution to this???
> >
> >
> >In all the above, NT4.0 with sp6a is used.
> >
> >
> >-Gautam

_________________________________________________________________
Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp.

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]