Reports SEP 12.1 : difference between Subnet and Client ?
Hi,
Could someone explain the difference between "Top Targets Attacked by Subnet" and "Top Targets Attacked by Client" ?
A customer needs to create a report showing the number of attacks on clients of all managed computers.
Thanks.
Hello, Top Targets Attacked
Hello,
Top Targets Attacked Report:
This report consists of a pie chart with relative bar. You can view information using groups, subnets, clients, or ports as the target. It includes information such as the number and percentage of attacks, the attack type and severity, and the distribution of attacks.
Use this report to identify which groups, subnets, computers, or ports are attacked most frequently. You may want to take some action based on this report. For example, you might find that the clients that attach through a VPN are attacked much more frequently. You might want to group those computers so that you can apply a more stringent security policy.
- Top Targets Attacked by Subnet - Would provide top targeted client list within the specified Subnet.
- Top Targets Attacked by Client - Would provide top targeted attack report narrowed to specified Client machine.
Hope that helps!!
Comments
Top Targets Attacked by
Top Targets Attacked by Subnet will show the activity for all clients on that subnet while Top Targets Attacked by Client will be broken down by individual client.
SEP Knowledge Base
Endpoint SWAT
Top Targets Attacked by
Top Targets Attacked by Subnet will show reports from all clients from that that subnet while Top Targets Attacked by Client will be from individual client.
http://www.symantec.com/business/support/index?page=content&id=TECH95538
http://www.symantec.com/business/support/index?page=content&id=HOWTO27550
Prachand MCSE-2012 Symantec Technical Specialist (SCTS)
Hello, These are the type of
Hello,
These are the type of Network Threat Protection Reports .Use these report to identify which groups, subnets, computers, or ports are attacked most frequently. You may want to take some action based on this report. For example, you might find that the clients that attach through a VPN are attacked much more frequently. You might want to group those computers so that you can apply a more stringent security policy.
Please check out the below link,
About Network Threat Protection reports and logs
http://www.symantec.com/docs/TECH95542
Viewing attack targets and sources
http://www.symantec.com/docs/HOWTO55118
Hello, Top Targets Attacked
Hello,
Top Targets Attacked Report:
This report consists of a pie chart with relative bar. You can view information using groups, subnets, clients, or ports as the target. It includes information such as the number and percentage of attacks, the attack type and severity, and the distribution of attacks.
Use this report to identify which groups, subnets, computers, or ports are attacked most frequently. You may want to take some action based on this report. For example, you might find that the clients that attach through a VPN are attacked much more frequently. You might want to group those computers so that you can apply a more stringent security policy.
Hope that helps!!
Mithun Sanghavi
Symantec Technical Support Engineer, SEP
MIM | MCSA | MCTS | STS | ITIL v3
Twitter: @mithun_sanghavi
Don't forget to mark your thread as 'SOLVED' with the answer that best helps you.<&a
Would you like to reply?
Login or Register to post your comment.