IDS rule
hello all-
i just deploy Alert logic log and threat manager. i am trying to find what some of the rules, policy and alerts you have setup on your system.
-
Hi Alex -
Thanks for posting! The Community doesn't seem to have much in the way of examples for you, so I'm going to have someone on our team provide you with some examples to get you started. Be on the lookout for another response!
0 -
Hi Alex,
Can you elaborate a little on what you are looking for please? If you are asking about Alert Logic content, you can view details of our security updates in the knowledge base here: Security & Software Updates
You do not need to create security content to derive value from your Alert Logic solution - this is all part of the service. However, there are some things that you can configure if you have specific requirements. Typically these would be:
- Alert Rules to notify you if there is a problem receiving network traffic or logs:
- Correlation policies and associated alerts for Log Manager, to allow you to define your own custom correlations over and above the Alert Logic content:
I hope this is helpful; please let us know if you have further questions, or feel free to contact support at +1 877 484 8383
0
Please sign in to leave a comment.
Comments
2 comments