Submit a ticketCall us

Don’t fall victim to a ransomware attack
Backups are helpful, but sometimes that’s not enough to protect your business against ransomware. At our live webcast we will discuss how to protect against ransomware attacks with SolarWinds® Patch Manager and how to leverage log data to detect ransomware. Register now for our live webcast.

Home > Success Center > Log & Event Manager (LEM) > LEM Network Event Threats filter conditions

LEM Network Event Threats filter conditions

Table of contents

Updated June 6, 2017

Overview

This article provides the default conditions used for the Network Events Threats filter under the Security section.

Environment

LEM 6.2.1 and later

Steps

Name: Network Event Threats

Conditions:

(OR)1st group{

(AND)2nd group{NetworkAudit.IsThreat == True}

(AND)3rd group{NetworkSuspicious.IsThreat == True} 

(AND)4th group{NetworkAttack.IsThreat == True} }

 

See the Default LEM filters conditions on the Web Console Monitor page article for a full list of available default filters in LEM.

 

Last modified
07:17, 6 Jun 2017

Tags

Classifications

Public