Create a DNS Security and ETI Policy
You can create a DNS security and ETI policy using the DNS security and ETI profile.
- Select Configure > Firewall Policy > DNS Security & ETI Policy.
- Click the + icon.
The Create DNS Security & ETI Policy page is displayed.
- Configure the values according to the guidelines provided in Table 1.
- Click OK.
Table 1: Create a DNS Security & ETI Policy
Field | Descriptions |
---|---|
Name | Enter a name for the DNS Security policy. The name must be a unique string of alphanumeric and special characters; 63-character maximum. Special characters such as < and > are not allowed. |
Device Association | Click Select to assign devices to the DNS Security and ETI Policy. Select the devices from the Available column and move them to the Selected column. |
Source Zone | The source zone is where the originating traffic for your connection is coming from. This is tied into your interface. If you can determine which interface the traffic is going to come in through, you can determine which zone the traffic will come in as the interface is tied to the zone. |
Destination Zone | The destination zone is the zone that the traffic uses to exit the Juniper firewall. You can determine this by identifying which interface the traffic comes out from with routing. The interface it exits is bound to a zone, and that zone is your destination zone. |
DNS Security & ETI Profile* | Select the DNS Security & ETI profile. |