Support Support Downloads Knowledge Base Case Manager My Juniper Community

Knowledge Base

Search our Knowledge Base sites to find answers to your questions.

Ask All Knowledge Base Sites All Knowledge Base Sites JunosE Defect (KA)Knowledge BaseSecurity AdvisoriesTechnical BulletinsTechnotes Sign in to display secure content and recently viewed articles

[ARCHIVE] How NSM handles log entry severity levels as defined by ScreenOS

0

0

Article ID: KB13592 KB Last Updated: 11 Jan 2020Version: 2.0
Summary:
How do the NSM log severity levels map to the ScreenOS severity levels and does NSM handle these severity levels?
Symptoms:

 
Solution:
NSM to ScreenOS severity mapping:
 
NSM Severity: ScreenOS Severity:
Critical Emergency - Log entries triggered when traffic matches a critical severity attack object.  Also includes log entries triggered by the SCREEN-level attacks, SYN attacks, Tear Drop attacks, and Ping of Death attacks

Alert - Log entries triggered by the general firewall SCREEN-level attacks or other conditions that require immediate attention, such the expiration of license keys.
Major Critical - Log entries triggered when traffic matches a major severity attack object. Also includes log entries triggered by changes in the device function, such as high availability (HA) status changes.
Minor Error - Log entries triggered when traffic matches a minor severity attack object.  Also includes log entries triggered by errors in device function, such as a failure in antivirus scanning or in communicating with SSH servers
Warning Warning - Log entries triggered when traffic matches a warning severity attack object.  Also includes log entries triggered by questionable device activity, such as a failure to connect to email servers and authentication failures, timeouts, and successes.
Info Notification - Log entries triggered when traffic matches an informational severity attack object. Also includes log entries triggered by normal events, such as device configuration changes.

Information - Log entries triggered by general system operations such as when a device connects or disconnects.









 
Modification History:
2020-01-10: Archived
Comment on this article > Affected Products Browse the Knowledge Base for more articles related to these product categories. Select a category to begin.

Getting Up and Running with Junos

Getting Up and Running with Junos Security Alerts and Vulnerabilities Product Alerts and Software Release Notices Problem Report (PR) Search Tool EOL Notices and Bulletins JTAC User Guide Customer Care User Guide Pathfinder SRX High Availability Configurator SRX VPN Configurator Training Courses and Videos End User Licence Agreement Global Search