Manualshelf

HP ProCurve Threat Management Solution Implementation Guide 2009-05

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
181182183184185186187188189190
3-120
HP ProCurve Network Immunity Manager with a Third-Party IDS/IPS
Step 2: Detect Threats
Figure 3-130. TippingPoint Folder Dashboard in PCM+
10. Select the TippingPoint IPS that PCM+ just discovered.
Task: Configure Non-ProCurve Security Devices Alerts in PCM+
In the last task in Step 1, you made a list of security events that occurred on your network.
Now you will set up alerts that correspond to those events. These alerts will allow you to detect
security events, and in the next step (“Step 3: Respond to Threats” on page 3-126), you will use
these alerts to trigger responses to the events. (For a detailed description of the relationship
between events and alerts, see the HP ProCurve Threat Management Solution Design Guide.)
PCM+ recognizes the following types of alerts:
ProCurve NBAD Services Alerts—defines all alerts that the NBAD engine creates
ProCurve Wired Alerts—defines all alerts created from security-related SNMP traps that
ProCurve switches generate
ProCurve Wireless Alerts—defines all alerts created from security-related SNMP traps
that ProCurve wireless devices generate
ProCurve Security Devices Alerts—defines alerts created from SNMP traps that
ProCurve security devices, such as the TMS zl Module, generate
Non-ProCurve Security Devices Alerts—defines all security-related SNMP traps that
supported third-party devices generate
This section explains how to configure Non-ProCurve Security Devices Alerts. For information
about configuring ProCurve NBAD Services Alerts, see “Task: Set Up ProCurve NBAD Services
Alerts” on page 2-24 in Chapter 2: “HP ProCurve Network Immunity Manager Standalone
Solution.”