Contents
Contents
- Security Director User Guide
- About the Documentation
- Junos Space Security Director
- Dashboard
- Overview
- Monitor
- Events and Logs-All Events
- Events and Logs Overview
- Creating Alerts
- Creating Reports
- Creating Filters
- Grouping Events
- Using Events and Logs Settings
- Selecting Events and Logs Table Columns
- Viewing Threats
- Using the Detailed Log View
- Using the Raw Log View
- Showing Exact Match
- Using Filter on Cell Data
- Using Exclude Cell Data
- Showing Firewall Policy
- Showing Source NAT Policy
- Showing Destination NAT Policy
- Downloading Packets Captured
- Showing Attack Details
- Using Filters
- Events and Logs-Firewall
- Events and Logs-Web Filtering
- Events and Logs-VPN
- Events and Logs-Content Filtering
- Events and Logs-Antispam
- Events and Logs-Antivirus
- Events and Logs-IPS
- Threat Prevention-Hosts
- Threat Prevention-C&C Servers
- Threat Prevention-HTTP File Download
- Threat Prevention-Email Quarantine and Scanning
- Threat Prevention-Manual Upload
- Applications
- Users
- Source IP
- Live Threat Map
- Alerts and Alarms - Overview
- Alerts and Alarms-Alerts
- Alerts and Alarms-Alert Definitions
- Alerts and Alarms-Alarms
- Job Management
- Using Job Management in Security Director
- Overview of Jobs in Security Director
- Archiving and Purging Jobs in Security Director
- Viewing the Details of a Job in Security Director
- Canceling Jobs in Security Director
- Reassigning Jobs in Security Director
- Rescheduling and Modifying the Recurrence of Jobs in Security Director
- Retrying a Failed Job on Devices in Security Director
- Exporting the Details of a Job in Security Director
- Job Management Main Page Fields
- Audit Logs
- Packet Capture
- NSX Inventory-Security Groups
- vCenter Server Inventory-Virtual Machines
- Devices
- Security Devices
- Using Features in Security Devices
- Security Devices Overview
- Updating Security-Specific Configurations or Services on Devices
- Resynchronizing Managed Devices with the Network in Security Director
- Uploading Authentication Keys to Devices in Security Director
- Modifying the Configuration of Security Devices
- Modifying the Basic Configuration for Security Devices
- Modifying the Static Routes Configuration for Security Devices
- Modifying the Routing Instances Configuration for Security Devices
- Modifying the Physical Interfaces Configuration for Security Devices
- Modifying the Syslog Configuration for Security Devices
- Modifying the Security Logging Configuration for Security Devices
- Modifying the Screens Configuration for Security Devices
- Modifying the Zones Configuration for Security Devices
- Modifying the IPS Configuration for Security Devices
- Configuring Aruba ClearPass for Security Devices
- Viewing the Active Configuration of a Device in Security Director
- Deleting Devices in Security Director
- Rebooting Devices in Security Director
- Resolving Key Conflicts in Security Director
- Launching a Web User Interface of a Device in Security Director
- Connecting to a Device by Using SSH in Security Director
- Importing Security Policies to Security Director
- Importing Device Changes
- Viewing Device Changes
- Viewing and Exporting Device Inventory Details in Security Director
- Previewing Device Configurations
- Refreshing Device Certificates
- Assigning Security Devices to Domains
- Acknowledging Device SSH Fingerprints in Security Director
- Viewing Security Device Details
- Security Devices Main Page Fields
- Device Discovery
- Overview of Device Discovery in Security Director
- Creating Device Discovery Profiles in Security Director
- Editing, Cloning, and Deleting Device Discovery Profiles in Security Director
- Running a Device Discovery Profile in Security Director
- Viewing the Device Discovery Profile Details in Security Director
- Device Discovery Main Page Fields
- Secure Fabric
- NSX Managers
- Understanding Juniper SDSN for VMware NSX Integration
- Before You Deploy vSRX in VMware NSX Environment
- Juniper SDSN for VMware NSX Licensing
- About the NSX Managers Page
- Downloading the SSH Key File
- Adding the NSX Manager
- Registering Security Services
- Editing NSX Managers
- Viewing Service Definitions
- Deleting the NSX Manager
- Deploying the vSRX as an Advanced Security Service in a VMware NSX Environment
- Creating a Security Group (VMware vCenter Server)
- Discovering the NSX Manager and Registering vSRX as a Security Service in vSphere cluster
- Deploying vSRX as a Security Service on a vSphere Cluster (VMware vCenter Server)
- Verifying vSRX Agent VM Deployment in Security Director
- Automatic Creation of Security Policy in the NSX Environment to Direct Traffic Through the vSRX Agent VMs (VMware vCenter Server)
- vCenter Servers
- Configure
- Firewall Policy-Policies
- Firewall Policies Overview
- Policy Ordering Overview
- Creating Firewall Policies
- Firewall Policies Best Practices
- Creating Firewall Policy Rules
- Rule Base Overview
- Rule Operations on Filtered Rules Overview
- Creating and Managing Policy Versions
- Comparing Policies
- Exporting Policies
- Creating Custom Columns
- Importing Policies
- Deleting and Replacing Policies and Objects
- Editing and Cloning Policies and Objects
- Publishing Policies
- Showing Duplicate Policies and Objects
- Showing and Deleting Unused Policies and Objects
- Updating Policies on Devices
- Firewall Policies Main Page Fields
- Firewall Policy Rules Main Page Fields
- Firewall Policy-Devices
- Firewall Policy-Schedules
- Firewall Policy-Profiles
- Understanding Firewall Policy Profiles
- Understanding Captive Portal Support for Unauthenticated Browser Users
- Creating Firewall Policy Profiles
- Editing and Cloning Policies and Objects
- Deleting and Replacing Policies and Objects
- Assigning Policies and Profiles to Domains
- Viewing Policy and Shared Object Details
- Firewall Policy Profiles Main Page Fields
- Firewall Policy-Templates
- Application Firewall Policy-Policies
- Application Firewall Policy-Signatures
- Understanding Custom Application Signatures
- Creating Application Signatures
- Editing, Cloning, and Deleting Custom Application Signatures
- Creating Application Signature Groups
- Application Signatures Main Page Fields
- SSL Profiles
- User Firewall Management-Active Directory
- User Firewall Management-Access Profile
- User Firewall Management-Identity Management
- Juniper Identity Management Service Overview
- About the Identity Management Profile Page
- Creating Identity Management Profiles
- Editing, Cloning, and Deleting Identity Management Profiles
- Updating the Identity Management Profile to SRX Series Devices
- IPS Policy-Policies
- Understanding IPS Policies
- Creating IPS Policies
- Creating IPS Policy Rules
- Publishing Policies
- Updating Policies on Devices
- Assigning Devices to Policies
- Creating and Managing Policy Versions
- Creating Rule Name Template
- Exporting Policies
- Unassigning Devices to Policies
- Editing and Cloning Policies and Objects
- Deleting and Replacing Policies and Objects
- Assigning Policies and Profiles to Domains
- Viewing Policy and Shared Object Details
- IPS Policies Main Page Fields
- IPS Policy-Devices
- IPS Policy-Signatures
- IPS Policy-Templates
- NAT Policy-Policies
- NAT Overview
- NAT Global Address Book Overview
- Creating NAT Policies
- Publishing Policies
- NAT Policy Rules Main Page Field
- Creating NAT Rules
- Updating Policies on Devices
- Editing and Cloning Policies and Objects
- Deleting and Replacing Policies and Objects
- Viewing Policy and Shared Object Details
- Assigning Policies and Profiles to Domains
- Comparing Policies
- Creating and Managing Policy Versions
- Assigning Devices to Policies
- Unassigning Devices to Policies
- Creating Rule Name Template
- Configuring NAT Rule Sets
- NAT Policies Main Page Fields
- NAT Policy-Devices
- NAT Policy-Pools
- NAT Policy-Port Sets
- UTM Policy-Policies
- UTM Overview
- Creating UTM Policies
- Comparing Policies
- Deleting and Replacing Policies and Objects
- Viewing Policy and Shared Object Details
- Assigning Policies and Profiles to Domains
- Showing Duplicate Policies and Objects
- Editing and Cloning Policies and Objects
- Showing and Deleting Unused Policies and Objects
- UTM Policies Main Page Fields
- UTM Policy-Web Filtering Profiles
- UTM Policy-Antivirus Profiles
- UTM Policy-Antispam Profiles
- UTM Policy-Content Filtering Profiles
- UTM Policy-Global Device Profiles
- UTM Policy-URL Patterns
- UTM Policy-Custom URL Categories
- Threat Prevention - Policies
- Threat Prevention - Sky ATP Realms
- Threat Prevention - Custom Feeds
- Threat Prevention - Email Management
- Threat Prevention - Malware Management
- IPsec VPN-VPNs
- IPsec VPN Overview
- Creating IPsec VPNs
- Understanding IPsec VPN Modes
- Comparison of Policy-Based VPNs and Route-Based VPNs
- Understanding IPsec VPN Routing
- Understanding IKE Authentication
- Publishing IPsec VPNs
- Updating IPSec VPN
- Modifying VPN Settings
- Viewing Tunnels
- Importing IPsec VPNs
- IPsec VPN Main Page Fields
- IPsec VPN-Extranet Devices
- IPsec VPN-Profiles
- Shared Objects-Geo IP
- Shared Objects-Policy Enforcement Groups
- Shared Objects-Addresses
- Shared Objects-Services
- Shared Objects-Variables
- Shared Objects-Zone Sets
- Understanding Zone Sets
- Creating Zone Sets
- Editing and Cloning Policies and Objects
- Deleting and Replacing Policies and Objects
- Finding Usages for Policies and Objects
- Showing and Deleting Unused Policies and Objects
- Showing Duplicate Policies and Objects
- Viewing Policy and Shared Object Details
- Zone Sets Main Page Fields
- Change Management-Change Requests
- Change Control Workflow Overview
- Creating a Firewall or NAT Policy Change Request
- About the Changes Submitted Page
- Approving and Updating Changes Submitted
- Editing, Denying, and Deleting Change Requests
- About the Changes Not Submitted Page
- Discarding Policy Changes
- Viewing Submitted and Unsubmitted Policy Changes
- Change Management-Change Request History
- Overview of Policy Enforcer and Sky ATP
- Concepts and Configuration Types to Understand Before You Begin (Policy Enforcer and Sky ATP)
- Installing Policy Enforcer
- Policy Enforcer Installation Overview
- Deploying and Configuring the Policy Enforcer with OVA files
- Installing Policy Enforcer with KVM
- Policy Enforcer Ports
- Identifying the Policy Enforcer Virtual Machine In Security Director
- Obtaining a Sky ATP License
- Creating a Sky ATP Cloud Web Portal Login Account
- Loading a Root CA
- Upgrading Your Policy Enforcer Software
- Configuring Policy Enforcer Settings and Connectors
- Guided Setup-Sky ATP with SDSN
- Guided Setup-Sky ATP
- Guided Setup for No Sky ATP (No Selection)
- Manual Configuration-Sky ATP with SDSN
- Configuring Sky ATP with SDSN (Without Guided Setup) Overview
- Creating Sky ATP Realms and Enrolling Devices or Associating Sites
- Secure Fabric Overview
- Creating Secure Fabric and Sites
- Editing or Deleting a Secure Fabric
- Policy Enforcement Groups Overview
- Creating Policy Enforcement Groups
- Threat Prevention Policy Overview
- Creating Threat Prevention Policies
- Threat Policy Analysis Overview
- Geo IP Overview
- Creating Geo IP Policies
- Manual Configuration-Sky ATP
- Configuring Cloud Feeds Only
- Configuring No Sky ATP (No Selection) (without Guided Setup)
- Migration Instructions for Spotlight Secure Customers
- Reports
- Administration
- My Profile
- Users and Roles-Users
- Overview of Users in Security Director
- Creating Users in Security Director
- Editing and Deleting Users in Security Director
- Viewing and Terminating Active User Sessions in Security Director
- Viewing the User Details in Security Director
- Clearing Local Passwords for Users in Security Director
- Disabling and Enabling Users in Security Director
- Unlocking Users in Security Director
- Users Main Page Fields
- Users and Roles-Roles
- Domain RBAC Overview
- Creating Customized Roles in Security Director
- Understanding Roles in Security Director
- Editing, Cloning, and Deleting Roles in Security Director
- Viewing the Details of a Role in Security Director
- Importing and Exporting Roles in Security Director
- Roles Main Page Fields
- Users and Roles-Domains
- Overview of Domains in Security Director
- Creating Domains in Security Director
- Editing and Deleting Domains in Security Director
- Exporting Domains in Security Director
- Viewing Users, Devices, and Remote Profiles Assigned to a Domain in Security Director
- Assigning Devices to Domains in Security Director
- Assigning and Unassigning Remote Profiles to Domains in Security Director
- Assigning and Unassigning Users to Domains in Security Director
- Domains Main Page Fields
- Users and Roles-Remote Profiles
- Logging Management
- Logging Management-Logging Nodes
- Logging Management-Statistics & Troubleshooting
- Logging Management-Logging Devices
- Monitor Settings
- Signature Database
- Migrating Content from NSM to Security Director
Contents
- Security Director User Guide
- About the Documentation
- Junos Space Security Director
- Dashboard
- Overview
- Monitor
- Events and Logs-All Events
- Events and Logs Overview
- Creating Alerts
- Creating Reports
- Creating Filters
- Grouping Events
- Using Events and Logs Settings
- Selecting Events and Logs Table Columns
- Viewing Threats
- Using the Detailed Log View
- Using the Raw Log View
- Showing Exact Match
- Using Filter on Cell Data
- Using Exclude Cell Data
- Showing Firewall Policy
- Showing Source NAT Policy
- Showing Destination NAT Policy
- Downloading Packets Captured
- Showing Attack Details
- Using Filters
- Events and Logs-Firewall
- Events and Logs-Web Filtering
- Events and Logs-VPN
- Events and Logs-Content Filtering
- Events and Logs-Antispam
- Events and Logs-Antivirus
- Events and Logs-IPS
- Threat Prevention-Hosts
- Threat Prevention-C&C Servers
- Threat Prevention-HTTP File Download
- Threat Prevention-Email Quarantine and Scanning
- Threat Prevention-Manual Upload
- Applications
- Users
- Source IP
- Live Threat Map
- Alerts and Alarms - Overview
- Alerts and Alarms-Alerts
- Alerts and Alarms-Alert Definitions
- Alerts and Alarms-Alarms
- Job Management
- Using Job Management in Security Director
- Overview of Jobs in Security Director
- Archiving and Purging Jobs in Security Director
- Viewing the Details of a Job in Security Director
- Canceling Jobs in Security Director
- Reassigning Jobs in Security Director
- Rescheduling and Modifying the Recurrence of Jobs in Security Director
- Retrying a Failed Job on Devices in Security Director
- Exporting the Details of a Job in Security Director
- Job Management Main Page Fields
- Audit Logs
- Packet Capture
- NSX Inventory-Security Groups
- vCenter Server Inventory-Virtual Machines
- Devices
- Security Devices
- Using Features in Security Devices
- Security Devices Overview
- Updating Security-Specific Configurations or Services on Devices
- Resynchronizing Managed Devices with the Network in Security Director
- Uploading Authentication Keys to Devices in Security Director
- Modifying the Configuration of Security Devices
- Modifying the Basic Configuration for Security Devices
- Modifying the Static Routes Configuration for Security Devices
- Modifying the Routing Instances Configuration for Security Devices
- Modifying the Physical Interfaces Configuration for Security Devices
- Modifying the Syslog Configuration for Security Devices
- Modifying the Security Logging Configuration for Security Devices
- Modifying the Screens Configuration for Security Devices
- Modifying the Zones Configuration for Security Devices
- Modifying the IPS Configuration for Security Devices
- Configuring Aruba ClearPass for Security Devices
- Viewing the Active Configuration of a Device in Security Director
- Deleting Devices in Security Director
- Rebooting Devices in Security Director
- Resolving Key Conflicts in Security Director
- Launching a Web User Interface of a Device in Security Director
- Connecting to a Device by Using SSH in Security Director
- Importing Security Policies to Security Director
- Importing Device Changes
- Viewing Device Changes
- Viewing and Exporting Device Inventory Details in Security Director
- Previewing Device Configurations
- Refreshing Device Certificates
- Assigning Security Devices to Domains
- Acknowledging Device SSH Fingerprints in Security Director
- Viewing Security Device Details
- Security Devices Main Page Fields
- Device Discovery
- Overview of Device Discovery in Security Director
- Creating Device Discovery Profiles in Security Director
- Editing, Cloning, and Deleting Device Discovery Profiles in Security Director
- Running a Device Discovery Profile in Security Director
- Viewing the Device Discovery Profile Details in Security Director
- Device Discovery Main Page Fields
- Secure Fabric
- NSX Managers
- Understanding Juniper SDSN for VMware NSX Integration
- Before You Deploy vSRX in VMware NSX Environment
- Juniper SDSN for VMware NSX Licensing
- About the NSX Managers Page
- Downloading the SSH Key File
- Adding the NSX Manager
- Registering Security Services
- Editing NSX Managers
- Viewing Service Definitions
- Deleting the NSX Manager
- Deploying the vSRX as an Advanced Security Service in a VMware NSX Environment
- Creating a Security Group (VMware vCenter Server)
- Discovering the NSX Manager and Registering vSRX as a Security Service in vSphere cluster
- Deploying vSRX as a Security Service on a vSphere Cluster (VMware vCenter Server)
- Verifying vSRX Agent VM Deployment in Security Director
- Automatic Creation of Security Policy in the NSX Environment to Direct Traffic Through the vSRX Agent VMs (VMware vCenter Server)
- vCenter Servers
- Configure
- Firewall Policy-Policies
- Firewall Policies Overview
- Policy Ordering Overview
- Creating Firewall Policies
- Firewall Policies Best Practices
- Creating Firewall Policy Rules
- Rule Base Overview
- Rule Operations on Filtered Rules Overview
- Creating and Managing Policy Versions
- Comparing Policies
- Exporting Policies
- Creating Custom Columns
- Importing Policies
- Deleting and Replacing Policies and Objects
- Editing and Cloning Policies and Objects
- Publishing Policies
- Showing Duplicate Policies and Objects
- Showing and Deleting Unused Policies and Objects
- Updating Policies on Devices
- Firewall Policies Main Page Fields
- Firewall Policy Rules Main Page Fields
- Firewall Policy-Devices
- Firewall Policy-Schedules
- Firewall Policy-Profiles
- Understanding Firewall Policy Profiles
- Understanding Captive Portal Support for Unauthenticated Browser Users
- Creating Firewall Policy Profiles
- Editing and Cloning Policies and Objects
- Deleting and Replacing Policies and Objects
- Assigning Policies and Profiles to Domains
- Viewing Policy and Shared Object Details
- Firewall Policy Profiles Main Page Fields
- Firewall Policy-Templates
- Application Firewall Policy-Policies
- Application Firewall Policy-Signatures
- Understanding Custom Application Signatures
- Creating Application Signatures
- Editing, Cloning, and Deleting Custom Application Signatures
- Creating Application Signature Groups
- Application Signatures Main Page Fields
- SSL Profiles
- User Firewall Management-Active Directory
- User Firewall Management-Access Profile
- User Firewall Management-Identity Management
- Juniper Identity Management Service Overview
- About the Identity Management Profile Page
- Creating Identity Management Profiles
- Editing, Cloning, and Deleting Identity Management Profiles
- Updating the Identity Management Profile to SRX Series Devices
- IPS Policy-Policies
- Understanding IPS Policies
- Creating IPS Policies
- Creating IPS Policy Rules
- Publishing Policies
- Updating Policies on Devices
- Assigning Devices to Policies
- Creating and Managing Policy Versions
- Creating Rule Name Template
- Exporting Policies
- Unassigning Devices to Policies
- Editing and Cloning Policies and Objects
- Deleting and Replacing Policies and Objects
- Assigning Policies and Profiles to Domains
- Viewing Policy and Shared Object Details
- IPS Policies Main Page Fields
- IPS Policy-Devices
- IPS Policy-Signatures
- IPS Policy-Templates
- NAT Policy-Policies
- NAT Overview
- NAT Global Address Book Overview
- Creating NAT Policies
- Publishing Policies
- NAT Policy Rules Main Page Field
- Creating NAT Rules
- Updating Policies on Devices
- Editing and Cloning Policies and Objects
- Deleting and Replacing Policies and Objects
- Viewing Policy and Shared Object Details
- Assigning Policies and Profiles to Domains
- Comparing Policies
- Creating and Managing Policy Versions
- Assigning Devices to Policies
- Unassigning Devices to Policies
- Creating Rule Name Template
- Configuring NAT Rule Sets
- NAT Policies Main Page Fields
- NAT Policy-Devices
- NAT Policy-Pools
- NAT Policy-Port Sets
- UTM Policy-Policies
- UTM Overview
- Creating UTM Policies
- Comparing Policies
- Deleting and Replacing Policies and Objects
- Viewing Policy and Shared Object Details
- Assigning Policies and Profiles to Domains
- Showing Duplicate Policies and Objects
- Editing and Cloning Policies and Objects
- Showing and Deleting Unused Policies and Objects
- UTM Policies Main Page Fields
- UTM Policy-Web Filtering Profiles
- UTM Policy-Antivirus Profiles
- UTM Policy-Antispam Profiles
- UTM Policy-Content Filtering Profiles
- UTM Policy-Global Device Profiles
- UTM Policy-URL Patterns
- UTM Policy-Custom URL Categories
- Threat Prevention - Policies
- Threat Prevention - Sky ATP Realms
- Threat Prevention - Custom Feeds
- Threat Prevention - Email Management
- Threat Prevention - Malware Management
- IPsec VPN-VPNs
- IPsec VPN Overview
- Creating IPsec VPNs
- Understanding IPsec VPN Modes
- Comparison of Policy-Based VPNs and Route-Based VPNs
- Understanding IPsec VPN Routing
- Understanding IKE Authentication
- Publishing IPsec VPNs
- Updating IPSec VPN
- Modifying VPN Settings
- Viewing Tunnels
- Importing IPsec VPNs
- IPsec VPN Main Page Fields
- IPsec VPN-Extranet Devices
- IPsec VPN-Profiles
- Shared Objects-Geo IP
- Shared Objects-Policy Enforcement Groups
- Shared Objects-Addresses
- Shared Objects-Services
- Shared Objects-Variables
- Shared Objects-Zone Sets
- Understanding Zone Sets
- Creating Zone Sets
- Editing and Cloning Policies and Objects
- Deleting and Replacing Policies and Objects
- Finding Usages for Policies and Objects
- Showing and Deleting Unused Policies and Objects
- Showing Duplicate Policies and Objects
- Viewing Policy and Shared Object Details
- Zone Sets Main Page Fields
- Change Management-Change Requests
- Change Control Workflow Overview
- Creating a Firewall or NAT Policy Change Request
- About the Changes Submitted Page
- Approving and Updating Changes Submitted
- Editing, Denying, and Deleting Change Requests
- About the Changes Not Submitted Page
- Discarding Policy Changes
- Viewing Submitted and Unsubmitted Policy Changes
- Change Management-Change Request History
- Overview of Policy Enforcer and Sky ATP
- Concepts and Configuration Types to Understand Before You Begin (Policy Enforcer and Sky ATP)
- Installing Policy Enforcer
- Policy Enforcer Installation Overview
- Deploying and Configuring the Policy Enforcer with OVA files
- Installing Policy Enforcer with KVM
- Policy Enforcer Ports
- Identifying the Policy Enforcer Virtual Machine In Security Director
- Obtaining a Sky ATP License
- Creating a Sky ATP Cloud Web Portal Login Account
- Loading a Root CA
- Upgrading Your Policy Enforcer Software
- Configuring Policy Enforcer Settings and Connectors
- Guided Setup-Sky ATP with SDSN
- Guided Setup-Sky ATP
- Guided Setup for No Sky ATP (No Selection)
- Manual Configuration-Sky ATP with SDSN
- Configuring Sky ATP with SDSN (Without Guided Setup) Overview
- Creating Sky ATP Realms and Enrolling Devices or Associating Sites
- Secure Fabric Overview
- Creating Secure Fabric and Sites
- Editing or Deleting a Secure Fabric
- Policy Enforcement Groups Overview
- Creating Policy Enforcement Groups
- Threat Prevention Policy Overview
- Creating Threat Prevention Policies
- Threat Policy Analysis Overview
- Geo IP Overview
- Creating Geo IP Policies
- Manual Configuration-Sky ATP
- Configuring Cloud Feeds Only
- Configuring No Sky ATP (No Selection) (without Guided Setup)
- Migration Instructions for Spotlight Secure Customers
- Reports
- Administration
- My Profile
- Users and Roles-Users
- Overview of Users in Security Director
- Creating Users in Security Director
- Editing and Deleting Users in Security Director
- Viewing and Terminating Active User Sessions in Security Director
- Viewing the User Details in Security Director
- Clearing Local Passwords for Users in Security Director
- Disabling and Enabling Users in Security Director
- Unlocking Users in Security Director
- Users Main Page Fields
- Users and Roles-Roles
- Domain RBAC Overview
- Creating Customized Roles in Security Director
- Understanding Roles in Security Director
- Editing, Cloning, and Deleting Roles in Security Director
- Viewing the Details of a Role in Security Director
- Importing and Exporting Roles in Security Director
- Roles Main Page Fields
- Users and Roles-Domains
- Overview of Domains in Security Director
- Creating Domains in Security Director
- Editing and Deleting Domains in Security Director
- Exporting Domains in Security Director
- Viewing Users, Devices, and Remote Profiles Assigned to a Domain in Security Director
- Assigning Devices to Domains in Security Director
- Assigning and Unassigning Remote Profiles to Domains in Security Director
- Assigning and Unassigning Users to Domains in Security Director
- Domains Main Page Fields
- Users and Roles-Remote Profiles
- Logging Management
- Logging Management-Logging Nodes
- Logging Management-Statistics & Troubleshooting
- Logging Management-Logging Devices
- Monitor Settings
- Signature Database
- Migrating Content from NSM to Security Director
Variables Overview
A variable is useful when similar rules can be applied across devices where only the zone or address might differ. Using variables instead of static values allows you to create fewer rules and use them more widely. You can achieve this by creating a variable address or a variable zone that you configure for all devices to which you are applying a group policy.
For example:
- Group firewall policy FW-G1 has two devices, Dev-1 and Dev-2. Each device has its own unique address. Dev-1 has address A1. Dev-2 has address A2.
- You want to apply the same rule to both devices, but you do not want to configure two rules with all the same criteria except for the address. It is more efficient to configure one rule with a variable default address and apply it to both devices.
- You can achieve this by creating an address variable with a default address, A3, and making A3 common to Dev-1 and Dev-2 in your rule. When you configure default address A3, you map it to the real address of each device, A1 for Dev-1 and A2 for Dev-2.
- When group firewall policy FW-G1 is applied, these mappings are used to replace the default address with the real address for each device.
Variables are only used in group policies. They are not applicable to device policies.
Figure 38: Variable Address Usage
Related Documentation
- Creating Variables
- Editing and Cloning Policies and Objects
- Importing and Exporting CSV Files
- Assigning Policies and Profiles to Domains
- Viewing Policy and Shared Object Details
Feedback Received. Thank You!
Previous
Shared Objects-Variables