Create Threat Feeds for IoT Devices

Use this page to add a new threat feed for IoT device. After creating the feed, you can enforce security policies across IoT traffic in the network. You can create a maximum of 64 feeds.

Review the IoT Device Overview topic.

To add a new threat feed:

Select Monitor > IoT Devices.
The IoT Devices page appears.
Select the desired filters based on the Category, Manufacturer/Model, or OS/Version and then click Create Feed.
The Add New Feed page appears with the selected category.
Complete the configuration according to the guidelines provided in the Table 1 table.
Click OK to save the changes.

Table 1: Add New Feed Settings
Setting	Guideline
Feed Name	Enter a unique name for the threat feed. The feed name must begin with an alpha-numeric character and can include letters, numbers, and underscores; no spaces are allowed. The length is 8–63 characters.
Type	The content type (IP) of the feed is auto-selected. You cannot modify this field.
Data Source	The data source (IoT) of the feed is auto-selected. You cannot modify this field.
Time to Live	Enter the number of days for the required feed entry to be active. After the feed entry crosses the time to live (TTL) value, the feed entry is automatically removed. The available range is 1–365 days.

After you create a feed, the same feed will be available for configuration on the Junos CLI. You can also see the feeds in Adaptive Threat Profiling page on Juniper ATP Cloud portal. Navigate to Configure > Adaptive Threat Profiling to view the new feeds.