Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
 

Download the Signature Database

Note:

This topic is applicable only for the CSO on-premises version. For CSO SaaS, you can skip this task because the signature database is downloaded by the Juniper Networks team.

The signature database that Juniper Networks provides contains application and intrusion prevention system (IPS) signatures:

  • Application signatures are definitions of predefined attacks and applications, and can be used to identify applications for tracking firewall policies and quality-of-service (QoS) prioritization.

  • IPS signatures are definitions of predefined attack object and attack object groups that you can use in IDP policies to match traffic against known attacks.

To download the signature database:

  1. Select Administration > Signature Database.

    The Signature Database page appears.

  2. Click Signature Download Settings.

    The Signature Download Settings page appears.

  3. Enter the download settings according to the guidelines provided in Table 1.
  4. Click OK to save the changes:

    • If you specified that the signature database should be downloaded immediately, a Job Tasks page appears displaying information about the signature download job. Click OK to close this page and return to the Signature Database page.

    • If you scheduled the signature download for later, a job is triggered and you are returned to the Signature Database page. A confirmation message (with the job ID) is displayed at the top of the page.

    After the signature download operation is complete, predefined signatures (application and IPS) and IPS profiles are available in CSO. You cannot modify predefined signatures or IPS profiles.

Table 1: Fields on the Signature Download Settings Page

Field

Description

Download URL

Specifies the location of the Juniper hosted server from which the signature database is downloaded to the CSO server. The default download URL is https://signatures.juniper.net/. To download signatures from this location, Internet connectivity must be available from CSO.

Signature Version
Note:

This field is enabled only when you change the download URL from https://signatures.juniper.net/.

Enter the numeric value of the signature database version. The value must only contain numbers and not have any special characters or negative values.

Type

You can chose to download the signature database immediately or schedule the download for later.

  • Select Run now to automatically download the signature database immediately.

  • Select Schedule at a later time to download the signature database later and specify the date and time.

    Note:

    The time zone is based on the time-zone specified when CSO is installed.

See Pre-Deployment Tasks for CSO SD-WAN and Next-Generation Firewall for the next task.