Network Security Solution Pack 2011.1r3 is released. This Solution Pack
can be downloaded from 'Sentinel Plug-ins Website'
(http://tinyurl.com/7zoyhsy).

WHAT IS NEW IN THIS RELEASE:

Following new reports are added to this Solution Pack,
Network Threats Control

- Threats Summary By Network Zone
- Email Spam Blocking Summary

Configuration and Status Updates Control

- License Issues
- Threshold Alert Summary
- Service Status Summary

User Activities Control

- Network Device Access Summary
- VPN Authentication Failure Summary

Traffic Trends Control

- Firewall Traffic Trends

Vulnerabilities Control

- Top Assets By Vulnerability Count
- Top Vulnerabilities By Count
- Vulnerabilities By Severity



Following new Correlation Rules are added to the Solution Pack,

- Probe Followed By Attack Symptoms
- Successful DoS Attack
- Confirmed Compromise on HPA
- DNS Probe Followed By DNS Attack Vectors
- Privilege Escalation Attempts
- Probe attempt detected by Firewall from one source
- Probe attempt detected by Firewall from multiple sources
- Flood/DoS attempt detected by Firewall from one source
- Flood/DoS attempt detected by Firewall from multiple sources
- Brute force attempt on high privilege accounts
- Failed/Denied attack events
- Information leak attempt
- Targeted penetration attempt on an enterprise resource
- Malware infection on an enterprise resource
- Successful malware cleanup activity on an enterprise resource
- Failed malware cleanup activity on an enterprise resource
- Successful malware containment on an enterprise resource
- Failed malware containment on an enterprise resource
- Successful evasion attack on an enterprise resource


--
ssankarnarayanan
------------------------------------------------------------------------
ssankarnarayanan's Profile: https://forums.netiq.com/member.php?userid=405
View this thread: https://forums.netiq.com/showthread.php?t=50188