Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 2 Current »





config
lab@vSRX-1> show configuration routing-options | display set 
set routing-options static route 0.0.0.0/0 next-hop 172.25.11.254

lab@vSRX-1> show configuration system name-server | display set 
set system name-server 8.8.8.8
set system name-server 8.8.4.4

rename interfaces fxp0 to ge-0/0/0

lab@vSRX-1> show configuration system ntp | display set 
set system ntp interval-range 0
set system ntp server 172.25.11.254
set system ntp threshold 600
set system ntp threshold action accept
Part 2
Part 3
Part 4
Part 5
part 5
Part5 :
-------

Threat management policies ( advanced-anti-malware policy )
SD: Configure / Threat Prevention / Policies  workspace.
>> create a policy

SRX: show configuration services

SRX: show configuration services security-intelligence 
>>> rules for infected host ( match on threat level)

Create an Firewall policy ( in SRX: security policy)
SD: Configure / Firewall Policy / Policies  workspace.
>> Create Firewall Policy
>> Add Rule to this Policy
>> Update ( then Update and Puclish)
SRX: show configuration security policies

SRX: show services advanced-anti-malware policy 

SRX: show configuration services security-intelligence  #Sky ATP
>> security intelligence profile & policy ; infected host: match and then

SRX: show security policies detail
Part 6
part 6
Part 6:
-------

SD: Monitor / Threat Management / Hosts  workspace
SD: Monitor / Threat Management / File Scanning workspace ( remove level 4)
(SD: Monitor / Threat Management / C&C Services workspace)


SRX: Display stats of file and email scanned
SRX: show services advanced-anti-malware statistics

SRX: set services advanced-anti-malware connection

SRX: show services security-intelligence statistics
>>> show block session per policy/blacklist/whitelist


  • No labels