UTM Antispam Filtering for Security Devices - Juniper Networks

More documents

Recommendations

Info

UTM Antispam Filtering for Security Devices Example: Configuring Local List Antispam Filtering Requirements Overview Configuration 22 CLI Quick Configuration GUI Step-by-Step Procedure This example shows how to configure local list antispam filtering. • Requirements on page 22 • Overview on page 22 • Configuration on page 22 • Verification on page 27 Before you begin, review how to configure the feature parameters for each UTM feature. See “Local List Antispam Filtering Configuration Overview” on page 21. Antispam filtering uses local lists for matching. When creating your own local whitelist and blacklist for antispam filtering, you can filter against domain names, e-mail addresses, and/or IP addresses. To quickly configure this example, copy the following commands, paste them into a text file, remove any line breaks, change any details necessary to match your network configuration, and then copy and paste the commands into the CLI at the [edit] hierarchy level. set security utm custom-objects url-pattern as-black value [150.61.8.134] set security utm custom-objects url-pattern as-white value [150.1.2.3] set security utm feature-profile anti-spam address-whitelist as-white set security utm feature-profile anti-spam sbl profile localprofile1 set security utm feature-profile anti-spam sbl profile localprofile1 spam-action block set security utm feature-profile anti-spam sbl profile localprofile1 custom-tag-string ***spam*** set security utm utm-policy spampolicy2 anti-spam smtp-profile localprofile1 set security policies from-zone trust to-zone untrust policy utmsecuritypolicy2 match source-address any set security policies from-zone trust to-zone untrust policy utmsecuritypolicy2 match destination-address any set security policies from-zone trust to-zone untrust policy utmsecuritypolicy2 match application junos-smtp set security policies from-zone trust to-zone untrust policy utmsecuritypolicy2 then permit application-services utm-policy spampolicy2 To configure local list antispam filtering: 1. Create local whitelist and blacklist custom objects by configuring a URL pattern list. a. Select Configure>Security>UTM>Custom Objects. b. In the UTM custom objects configuration window, select the URL Pattern List tab. c. Click Add to create URL pattern lists. Copyright © 2013, Juniper Networks, Inc.
Copyright © 2013, Juniper Networks, Inc. d. Next to URL Pattern Name, type a unique name. NOTE: If you are creating a whitelist, it is helpful to indicate this in the list name. The same applies to a blacklist. The name you enter here becomes available in the Address Whitelist and Address Blacklist fields when you are configuring your antispam profiles. e. Next to URL Pattern Value, type the URL pattern for whitelist or blacklist antispam filtering. 2. Configure antispam filtering to use the whitelist and blacklist custom objects. a. Select Configure>Security>UTM>Global options. b. In the right pane, select the Anti-Spam tab. c. Under Anti-Spam, select an Address Whitelist and/or an Address Blacklist from the list for local lists for spam filtering. (These lists are configured as custom objects.) d. Click OK. e. If the configuration item is saved successfully, you receive a confirmation, and you must click OK again. If it is not saved successfully, click Details in the pop-up window to discover why. f. In the left pane under Security, select the Anti-Spam tab. g. Click Add to configure an anti-spam profile. The profile configuration pop-up window appears. h. In the Profile name box, enter a unique name. i. If you are using the default server, select Yes beside Default SBL server. If you are not using the default server, select No. NOTE: If you select No, you are disabling server-based spam filtering. You disable it only if you are using local lists or if you do not have a license for server-based spam filtering. Chapter 6: Local List Antispam Filtering 23
Page 1 and 2: Junos ® OS UTM Antispam Filtering
Page 3 and 4: Table of Contents Part 1 Overview A
Page 5 and 6: List of Tables Part 1 Overview Abou
Page 7 and 8: About the Documentation • Documen
Page 9 and 10: Merging a Snippet Documentation Con
Page 11 and 12: Table 2: Text and Syntax Convention
Page 13 and 14: PART 1 Overview Copyright © 2013,
Page 15 and 16: CHAPTER 1 Supported Features Unifie
Page 17 and 18: CHAPTER 2 Antispam Filtering Antisp
Page 19 and 20: CHAPTER 3 Server-Based Antispam Fil
Page 21 and 22: CHAPTER 4 Local List Antispam Filte
Page 23 and 24: PART 2 Configuration Copyright © 2
Page 25 and 26: CHAPTER 5 Server-Based Antispam Fil
Page 27 and 28: Copyright © 2013, Juniper Networks
Page 31 and 32: Action From operational mode, enter
Page 33: CHAPTER 6 Local List Antispam Filte
Page 37 and 38: Step-by-Step Procedure Copyright ©
Page 39 and 40: Verification destination-address an
Page 41 and 42: CHAPTER 7 Configuration Statements
Page 45 and 46: • Application Quality of Service
Page 53 and 54: address-blacklist Syntax address-bl
Page 55 and 56: custom-objects Syntax custom-object
Page 57 and 58: feature-profile Syntax feature-prof
Page 63 and 64: Required Privilege Level Related Do
Page 65 and 66: edirect-wx | reverse-redirect-wx; s
Page 67 and 68: policies Syntax policies { default-
Page 71 and 72: primary-server Syntax primary-serve
Page 73 and 74: secondary-server Syntax secondary-s
Page 75 and 76: edirect-wx | reverse-redirect-wx; s
Page 77 and 78: traceoptions (Security Antispam) Sy
Page 79 and 80: utm Syntax utm { application-proxy
Page 85 and 86:
Copyright © 2013, Juniper Networks
Page 87 and 88:
utm-policy Syntax utm-policy policy
Page 89 and 90:
PART 3 Administration Copyright ©
Page 91 and 92:
CHAPTER 8 Spam Message Handling Han
Page 93 and 94:
CHAPTER 9 Operational Commands Copy
Page 95 and 96:
show security utm anti-spam statist
Page 97 and 98:
show security utm status Syntax sho
Page 99 and 100:
PART 4 Index Copyright © 2013, Jun
Page 101 and 102:
Index Symbols #, comments in config
show all

UTM Antispam Filtering for Security Devices - Juniper Networks

Create successful ePaper yourself

Delete template?

Save as template?