security-intelligence (Services)
Syntax
authentication {
auth-token auth-token;
tls-profile tls-profile;
traceoptions {
no-remote-trace;
file [ filename <files number> <size bytes> <match expression> <world-readable | no-world-readable>];
flag [all | feed | ipc];
level [all| error | info | notice | verbose | warning];
no-remote-trace;
url url;
Hierarchy Level
[edit services]
Description
You can configure security intelligence profiles and policies to work with security intelligence feeds, such as infected hosts and C&C. You then configure a firewall policy to include the security intelligence policy, for example, block outgoing requests to a C&C host.
Options
| authentication | Configure authentication, such as an auth token or TLS profile, to commute with the feed server. This operation is performed by the ops script used to enroll your devices and is typically not required afterwards. If you have problems establishing a connection with the Juniper ATP Cloud cloud server, we recommend that you rerun the ops script instead of manually entering all the CLI commands. |
| traceoptions | Set security intelligence trace options.
|
| url url-address | Configure the URL of the feed server. This operation is performed by the ops script used to enroll your devices and is typically not required afterwards. If you have problems establishing a connection with the Juniper ATP Cloud cloud server, we recommend that you rerun the ops script instead of manually entering all the CLI commands. |
Required Privilege Level
system—To view this statement in the configuration.
system-control—To add this statement to the configuration.
Release Information
Statement introduced in Junos OS Release 19.3R2 on MX Series routers with Juniper Juniper Advanced Threat Prevention Cloud (ATP).
Support added in Junos OS Release 19.3R2 for Next Gen Services on MX Series routers MX240, MX480, and MX960. This support runs inline on the MPC card.