Support Support Downloads Knowledge Base Case Manager My Juniper Community

Knowledge Base

Search our Knowledge Base sites to find answers to your questions.

Ask All Knowledge Base Sites All Knowledge Base Sites JunosE Defect (KA)Knowledge BaseSecurity AdvisoriesTechnical BulletinsTechnotes Sign in to display secure content and recently viewed articles

STRM System notification messages - How to reduce the amount of messages displayed.



Article ID: KB14104 KB Last Updated: 06 May 2009Version: 1.0
Starting with 2008.3 version, STRM UI shows system notification messages; which are basically the same as the logs in /var/log/qradar.log.   These are shown in UI for information and troubleshooting purposes.

Sometimes these system logs can get overwhelming and we may need to reduce amount of events reported in Event Viewer.
How to reduce amount of system notifications displayed in Event Viewer
System Notifications are shown in the Event Viewer based "System Notiifcation" rule. This rule can be fine tuned to reduce the number of messages displayed in the Event Viewer.

Follow the steps below to tune the "system notification" rule
  1. Login to STRM using Webui
  2. Go to Offense Manager tab > Rules
  3. Select the rule "Default Rule - System Notification" and Edit it (double click will open the rule)

  4. Make the necessary changes to the rule.  For example, the following settings will limit the system notification to 3 messages per hour

  5. Click Finish to save the rule.

Comment on this article > Affected Products Browse the Knowledge Base for more articles related to these product categories. Select a category to begin.

Getting Up and Running with Junos

Getting Up and Running with Junos Security Alerts and Vulnerabilities Product Alerts and Software Release Notices Problem Report (PR) Search Tool EOL Notices and Bulletins JTAC User Guide Customer Care User Guide Pathfinder SRX High Availability Configurator SRX VPN Configurator Training Courses and Videos End User Licence Agreement Global Search