Video Screencast Help
Symantec to Separate Into Two Focused, Industry-Leading Technology Companies. Learn more.

Search

Search results

I need a solution Has any tried or have knowledge of whether reducing the number of fields to be indexed in archives will improve performance during searches and/or archive maintenance? ...
Forum Discussion by awgtek variq | 12 Oct 2011 | 1 comment
I need a solution Is it possible to add the option to enable raw event logging in collectors developed with Collector Studio? I did not see the option, but perhaps I missed something. ...
Forum Discussion by awgtek variq | 12 Oct 2011 | 4 comments
I need a solution The Installation guide for SSIM mentions a recommended CPU of 2x Dual Core class (or better). There is no mention however of the Ghz speed of the CPU. Other SIEMs such ...
Forum Discussion by awgtek variq | 11 Oct 2011 | 2 comments
When performing a 'Unique value by column' query, it would be useful to have a column with the counts of events for those unique values. (Security, Symantec Security Information Manager) () When performing a 'Unique value by ...
Idea by awgtek variq | 08 Oct 2011 | 0 comments
Problem : You would like to search the Assets and Policies database for an IP using an Advanced (SQL) Query. Solution : In your advanced query enter the following SQL. Then replace [ipnum] with your IP address (i.e. dotted quad IP). ...
Blog Entry by awgtek variq | 22 Jul 2011 | 0 comments
It would be good to be able to configure a response rule, i.e. action within a rule definition, to update a lookup table with the incident properties. This way rules can be self-tuned. (Security, Symantec Security Information Manager) () It ...
Idea by awgtek variq | 13 Jul 2011 | 0 comments
I need a solution I’m not sure what the following definition means by “different types.” The definition implies that the incident requires a minimum number of different types of events ...
Forum Discussion by awgtek variq | 08 Jul 2011 | 0 comments
I need a solution Is there a way to determine when the cache size is getting close to full for a particular rule? The following KB explains the algorithm but does not indicate ...
Forum Discussion by awgtek variq | 04 Jul 2011 | 0 comments
I need a solution (refer to the online help quote below) What is the difference between "batch events" and "direct events"? I thought "direct events" may ...
Forum Discussion by awgtek variq | 04 Jul 2011 | 0 comments
Currently the only way to search for an IP range, if I am not mistaken, is to create a greater than/less than query/filter condition over the numeric IP address fields. The problem is that these fields appear to contain negative numbers which represent ...
Idea by awgtek variq | 02 Jul 2011 | 0 comments