Help Center User GuideGetting StartedFAQsRelease Notes
 
X
User Guide
Getting Started
FAQs
Release Notes
Contents  

Configuring Cloud Feeds Only

This in an outline of the configuration tasks you must complete to configure Cloud feeds only threat prevention.

Before You Begin

Procedure

To configure Security Director for Cloud feed only threat prevention, do the following:

Note: Cloud feed only configuration is similar to Sky ATP (without PE) configuration. The only differences being that devices do not have to be enrolled to Sky ATP and the only threat prevention types available are command and control server and Geo IP.

  1. Create one or more Sky ATP realms and add devices to the realm. (Note that devices do not have to be enrolled to Sky ATP for Cloud Feed only mode.)

    In the UI, navigate to Configure>Threat Prevention>Sky ATP Realms. Click the + icon to add a new Sky ATP realm.

    See Creating Sky ATP Realms and Enrolling Devices or Associating Sites for details.

  2. Create a threat prevention policy for Command and Control server. (Note that this is the only threat prevention, besides Geo IP, supported for Cloud Feed only mode.)

    In the UI, navigate to Configure>Threat Prevention >Policy. Click the + icon to create a new threat prevention policy.

    See Creating Threat Prevention Policies for details.

  3. Configure Geo IP settings for inclusion in a firewall policy. See Creating Geo IP Policies.

    You must select your Geo IP policy as the source and/or destination of a firewall rule before it can take effect. Navigate to Configure > Firewall Policy > Policies.

    .

  4. You must assign a command and control server threat prevention policy to a firewall rule before it can take affect.

    In the UI, navigate to Configure > Firewall Policy > Policies. In the Advanced Security column, click an item to access the Edit Advanced Security page and select the threat prevention policy from the Threat Prevention pulldown list.

Related Documentation

Ask questions in TechWiki

Check documentation in TechLibrary

Rating by you:      
X

Additional Comments

800 characters remaining

May we contact you if necessary?

Name:
Email:

Need product assistance? Contact Juniper Support

Submit