CSIDS Exam Cram 2 (Exam 642-531)

2017-07-07 02:10:07

[ LiB ]

The following list summarizes the key points to bear in mind when thinking about IEV views:

The initial view provides an aggregate view of alarm data.

Views are grouped by signature name , source address, destination address, sensor identity, and severity levels.

Each view can have different data sources.

The level of alarm detail is customizable.

A graph view displays alarm data in either an area format or a bar graph format.

You can see in Figure 13.1 that the default viewsSignature Name, Security Level, Sensor Name, Destination Address, and Source Addresscorrespond to the tab sheets in the right-side pane.

Figure 13.1. The default views of Cisco IEV correspond to the tab sheets in the right side of the interface.

[ LiB ]

Figure 13.1. The default views of Cisco IEV correspond to the tab sheets in the right side of the interface.

Категории