Table 41 – H3C Technologies H3C SecCenter IPS Manager User Manual
Page 45
39
Table 41 Fields of the event snapshot lists in snapshot, attack protection, and virus protection tabs
Field Description
Attack Event/Attack
Destination IP
Virus Event/Virus
Source IP
DDoS Attack/DDoS
Attack Destination IP
•
Attack protection lists include statistics on total attack events, attack events blocked,
attack source IP addresses, attack destination IP addresses, and attack event types.
•
Virus protection lists include statistics on total virus events, virus events blocked, virus
destination IP addresses, and virus event types.
•
DDoS attack lists include statistics on DDoS events and DDoS attack destination IP
addresses.
Event Count
Count of the events
Percentage
Percentage of the events
•
In the Details column of an event snapshot list, you can click the
icon of an attack, virus, or
DDoS event to enter event details page. For more information, see “
Displaying attack event details
Displaying virus event details
•
Each attack event name is a link. You can click the link to view the event’s detailed information,
including event ID, event name, severity, description, application, and solution.
Besides the Snapshot tab, the system also provides Attack Protection tab (see
), Virus Protection
tab (see
), and DDoS Attack tab (see
), which provide realtime monitoring reports of
attack events, virus events, and DDoS attack events of the devices. The system collects statistics on the
attack/virus/DDoS attack event information during the last hour, presenting attack event/virus
event/DDoS event trend graphs. Under the trend graphs are Top N lists showing the detailed event
statistics, including Top N events, sources, targets, ports, and protocols.
Figure 37 Attack protection event snapshot