Welcome
Profile
About
Help
Log Out
Surveillance
Security
Targeted Capture
Targeting
Monitoring
Capture Devices
Users & Cases
Policies
Alerts
Cases
Applications
Endpoints
Correlated Vectors
Profile Templates
Profiles
Documents
Policies >
Profile Templates
Profile Template Name
Category
Vector
Profile Template 1
L7 Seesion
HTTP
Profile Template 2
L7 Session
SMTP
Profile Template 3
L7 Session
POP3
Profile Template 4
Mobile
IOS
Profile Template 5
L4 Flow
HTTP
Export Templates
File:
Create Profile Template
Watch List Rules
Behavioral Rules
Exfiltration Rules
Template Name:
Description:
Category:
- Select -
Correlated Vectors
L4 Flow
L7 Session
Mobile
Vector:
- Select -
DNS HDR-ANS
HTTP
FTP
POP3
SMTP
Rule Type:
- Select -
Simple
Volumetric
Severity:
Critical
High
Medium
Low
Observation
Alert Interval:
(secs)
Context:
ClientIP
DNS_Answer_SessionID
HdrError
NumAdd
Attribute5
Attribute6
Condition:
- Select Attribute -
Protocol ID
Client IP
Application ID
Client IP
Mobile Device
Server IP
Session ID
- Select Operator -
Contains
Equals
Matches
Ignore Case Match
Not Contain
Not Equal
And
Or
Attributes
Operator
Value
Server IP
Not Equal
192.168.22.31
Client IP
Equals
10.16.32.45
Template Name:
Category:
- Select -
L4 Flow
L7 Session
Mobile
Vector:
- Select -
HTTP
FTP
POP3
SMTP
Traffic Filter
Metrics
Rules
- Select Attribute -
Protocol ID
Client IP
Application ID
Client IP
Mobile Device
Server IP
Session ID
- Select Operator -
Contains
Equals
Matches
Ignore Case Match
Not Contain
Not Equal
Attribute
Operator
Value
Port
Not Equal
80, 8080
Protocol
Equals
HTTP
Metric Name:
Metric Type:
- Select -
Simple
Entropy
Calculation Points:
Operator:
Greater Than
Less Than
Plot by Function:
- Select -
Average
Distinct Count
Maximum
Minimum
Sum
Plot by Attribute:
- Select -
PktsSent
Attribute 2
Attribute 3
Attribute 4
Entropy Attribute:
ClientIP
SrcMac
EntropyAttri3
EntropyAttri4
Additional Filter:
Metric Name
Metric Type
Calculation Point
Operator & Value
Plot by Function
Plot by Attribute
Entropy Attribute
Additional Filter
Entropy1
Entropy
25
Sum
PktsSent
ClientIP
Entropy2
Entropy
250
Count
xyz
SrcMac
Severity:
Critical
High
Medium
Low
Alert Interval:
(secs)
Condition:
- Select Metric -
entropy1
entropy2
- Select Operator -
Greater Than
Less Than
Baseline Up
Baseline Down
Metric
Operator
Value
Entropy1
Not Equal
5
Entropy2
Equals
10
Template Name:
Description:
Protocol:
HTTP
SMTP
FTP
Exfiltration Type:
Fingerprinted Content
Personally Identifiable Information
Content Match:
High
Medium
Low
Severity:
Critical
High
Medium
Low
About nSystem
Version: 1.3
Support:
support@narus.com
Profile
Usename:
Role:
Email Address:
Change Passsword
Change Password
Usename:
Role:
Current Password:
New Password:
Re-enter Password: