UTM Antispam Filtering for Security Devices - Juniper Networks

More documents

Recommendations

Info

UTM Antispam Filtering for Security Devices 26 [edit security] user@host# set utm feature-profile anti-spam sbl profile localprofile1 spam-action block 5. Configure a custom string for identifying a message as spam. [edit security] user@host# set utm feature-profile anti-spam sbl profile localprofile1 custom-tag-string ***spam*** 6. Attach the spam feature profile to the UTM policy. [edit security] user@host# set utm utm-policy spampolicy2 anti-spam smtp-profile localprofile1 7. Configure a security policy for UTM, and attach the UTM policy to the security policy. Results [edit] user@host# set security policies from-zone trust to-zone untrust policy utmsecuritypolicy2 match source-address any user@host# set security policies from-zone trust to-zone untrust policy utmsecuritypolicy2 match destination-address any user@host# set security policies from-zone trust to-zone untrust policy utmsecuritypolicy2 match application junos-smtp user@host# set security policies from-zone trust to-zone untrust policy utmsecuritypolicy2 then permit application-services utm-policy spampolicy2 Results From configuration mode, confirm your configuration by entering the show security utm and show security policies commands. If the output does not display the intended configuration, repeat the configuration instructions in this example to correct it. [edit] user@host# show security utm custom-objects { anti-spam { url-pattern patternwhite; address-whitelist as-white; sbl { profile localprofile1 { spam-action block; custom-tag-string ***spam***; } } } utm-policy spampolicy2 { anti-spam { smtp-profile localprofile1; } } [edit] user@host# show security policies from-zone trust to-zone untrust { policy utmsecuritypolicy2 { match { source-address any; Copyright © 2013, Juniper Networks, Inc.
Verification destination-address any; application junos-smtp; } then { permit { application-services { utm-policy spampolicy2; } } } } } If you are done configuring the device, enter commit from configuration mode. To confirm that the configuration is working properly, perform this task: • Verifying Antispam Statistics on page 27 Verifying Antispam Statistics Purpose Verify the anitspam statistics. Copyright © 2013, Juniper Networks, Inc. Action From operational mode, enter the show security utm anti-spam status and show security utm anti-spam statistics commands. The following information appears: SBL Whitelist Server: SBL Blacklist Server: msgsecurity.juniper.net DNS Server: Primary : 1.2.3.4, Src Interface: ge-0/0/0 Secondary: 2.3.4.5, Src Interface: ge-0/0/1 Ternary : 0.0.0.0, Src Interface: fe-0/0/2 Total connections: # Denied connections: # Total greetings: # Denied greetings: # Total e-mail scanned: # White list hit: # Black list hit: # Spam total: # Spam tagged: # Spam dropped: # DNS errors: # Timeout errors: # Return errors: # Invalid parameter errors: # Statistics start time: Statistics for the last 10 days. Chapter 6: Local List Antispam Filtering 27
Page 1 and 2: Junos ® OS UTM Antispam Filtering
Page 3 and 4: Table of Contents Part 1 Overview A
Page 5 and 6: List of Tables Part 1 Overview Abou
Page 7 and 8: About the Documentation • Documen
Page 9 and 10: Merging a Snippet Documentation Con
Page 11 and 12: Table 2: Text and Syntax Convention
Page 13 and 14: PART 1 Overview Copyright © 2013,
Page 15 and 16: CHAPTER 1 Supported Features Unifie
Page 17 and 18: CHAPTER 2 Antispam Filtering Antisp
Page 19 and 20: CHAPTER 3 Server-Based Antispam Fil
Page 21 and 22: CHAPTER 4 Local List Antispam Filte
Page 23 and 24: PART 2 Configuration Copyright © 2
Page 25 and 26: CHAPTER 5 Server-Based Antispam Fil
Page 27 and 28: Copyright © 2013, Juniper Networks
Page 31 and 32: Action From operational mode, enter
Page 33 and 34: CHAPTER 6 Local List Antispam Filte
Page 37: Step-by-Step Procedure Copyright ©
Page 41 and 42: CHAPTER 7 Configuration Statements
Page 45 and 46: • Application Quality of Service
Page 53 and 54: address-blacklist Syntax address-bl
Page 55 and 56: custom-objects Syntax custom-object
Page 57 and 58: feature-profile Syntax feature-prof
Page 63 and 64: Required Privilege Level Related Do
Page 65 and 66: edirect-wx | reverse-redirect-wx; s
Page 67 and 68: policies Syntax policies { default-
Page 71 and 72: primary-server Syntax primary-serve
Page 73 and 74: secondary-server Syntax secondary-s
Page 75 and 76: edirect-wx | reverse-redirect-wx; s
Page 77 and 78: traceoptions (Security Antispam) Sy
Page 79 and 80: utm Syntax utm { application-proxy
Page 87 and 88: utm-policy Syntax utm-policy policy
Page 89 and 90:
PART 3 Administration Copyright ©
Page 91 and 92:
CHAPTER 8 Spam Message Handling Han
Page 93 and 94:
CHAPTER 9 Operational Commands Copy
Page 95 and 96:
show security utm anti-spam statist
Page 97 and 98:
show security utm status Syntax sho
Page 99 and 100:
PART 4 Index Copyright © 2013, Jun
Page 101 and 102:
Index Symbols #, comments in config
show all

UTM Antispam Filtering for Security Devices - Juniper Networks

Create successful ePaper yourself

Delete template?

Save as template?