Configuring Server-Based Spam Filtering (J-Web Procedure)

To configure server-based antispam:

1. Select Configure>Security>UTM>Anti-Spam.
2. In the Anti-Spam profiles configuration window, click Add to configure a profile for the SBL server or Edit to modify an existing item.
3. In the Profile name box, enter a unique name for the antispam profile that you are creating.
4. If you are using the default server, select Yes next to Default SBL server. If you are not using the default server, select No.

   Note: The SBL server is predefined on the device. It ships knowing the name and address of the SBL server. If you do not select Yes, you are disabling server-based spam filtering. You should only disable it if you are using only local lists or if you do not have a license for server-based spam filtering.

5. In the Custom tag string box, enter a custom string for identifying a message as spam. By default, the devices uses ***SPAM***.
6. From the antispam action list, select the action that the device should take when it detects spam. Options include Tag subject, Block email, or Tag header.
7. Click OK to save your profile.
8. If the profile is saved successfully, you receive a confirmation and you must click OK again. If the profile is not saved successfully, you can click Details in the pop-up window that appears to discover why.

Next, configure a UTM policy for SMTP. You will attach the antispam profile to this UTM policy:

1. Select Configure>Security>Policy>UTM Policies.
2. In the UTM policy configuration window, click Add.
3. In the policy configuration window, select the Main tab.
4. In the Policy name box, enter a unique name for the UTM policy.
5. In the Session per client limit box, enter a session per client limit. Valid values range from 0 to 20000.
6. From the Session per client over limit list, select the action that the device should take when the session per client limit for this UTM policy is exceeded. Options include Log and permit and Block.
7. Select the Anti-Spam profiles tab in the pop-up window.
8. From the SMTP profile list, select an antispam profile to attach to this UTM policy.
9. Click OK to save your policy.
10. If the policy is saved successfully, you receive a confirmation and you must click OK again. If the profile is not saved successfully, you can click Details in the pop-up window that appears to discover why.

Next, attach the UTM policy to a security policy:

1. Select Configure>Security>Policy>FW Policies.
2. In the Security Policy window, click Add to configure a security policy with UTM or Edit to modify an existing policy.
3. In the Policy tab, enter a name in the Policy Name box.
4. Next to From Zone, select a zone from the list.
5. Next to To Zone, select a zone from the list.
6. Choose a Source Address.
7. Choose a Destination Address.
8. Choose an application by selecting junos-smtp (for antispam) in the Application Sets box and clicking the —> button to move it to the Matched box.
9. Next to Policy Action, select one of the following: Permit, Deny, or Reject.

   Note: When you select Permit for Policy Action, several additional fields become available in the Applications Services tab, including UTM Policy.

10. Select the Application Services tab.
11. Next to UTM Policy, select the appropriate policy from the list. This attaches your UTM policy to the security policy.
12. Click OK to save your policy.
13. If the policy is saved successfully, you receive a confirmation and you must click OK again. If the profile is not saved successfully, you can click Details in the pop-up window that appears to discover why.

    Note: You must activate your new policy to apply it.

Related Topics

JUNOS Software Feature Support Reference for SRX Series and J Series Devices