Creating Application Signature Groups

Juniper Networks regularly updates the predefined application signature database, making it available to subscribers on the Juniper Networks website. This package includes signature definitions of known application objects that can be used to identify applications for tracking, firewall policies, quality-of-service prioritization, and Intrusion Prevention System (IPS).

Use the Application Signature page to view application signatures that are already downloaded and to create custom application signature groups. The application signature page displays the name, object type, category and subcategory, risk, and characteristics of the signature. You can create custom application signature groups with a set of similar signatures for consistent reuse when defining policies.

Before You Begin

• Make sure you have downloaded the application signature database package.

• Make sure that the latest updates have been applied.

• Review the Application Signature main page for an understanding of your current data set. See Application Signatures Main Page Fields for field descriptions.

Application identification supports custom application signatures to detect applications as they pass through the device. When you configure custom signature groups, make sure that your signature groups are unique.

Procedure

1. Select Configure > Application Firewall Policy >Signatures.
2. Click the + icon.
3. Complete the configuration according to the guidelines provided in Table 182.
4. Click OK to save.