Network analysis rules tab
Use the Network analysis rules tab to create, view, and modify the customer-created network analysis rules that are used by the VMware NSX Network Detection and Response.
Your installation must have the system license to access this tab.
Contact us to update your license.
The quick search field above the list provides fast, as-you-type search. It filters the rows in the list, displaying only those rows that have text, in any field, that matches the query string.
Click the New rule button to expand the Network analysis rule sidebar to create a new rule.
Customize the number of rows to be displayed. By default, 20 entries are shown. Use the and icons to navigate through multiple pages.
Each row displays a summary of a network analysis rule. Click anywhere on an entry row to expand the Network analysis rule sidebar in read-only mode.
The list of rules contains the following columns:
- Rule name
-
The name of the rule.
- Last modified by
-
The name or email address of the analyst that modified the rule and the date when it was last modified.
- Attack stage
-
The optional user-defined attack stage (see About attack stages) that is assigned to alerts this rule triggers. This field may be blank.
- Impact
-
The user-defined impact level that is assigned to alerts this rule triggers. The default is 20.
-
Click the icon and select one of the actions from the pop-up menu: Edit, Copy, or Delete.
Select Edit or Copy to expand the Network analysis rule sidebar prepopulated with the values of the rule.
If you select Delete, a confirmation pop-up is displayed. Click Delete to delete the rule and close the pop-up.