Help Center User GuideGetting Started
User Guide
Getting Started

Monitoring ATP Events


Starting in Junos OS Release 19.2R1, you can monitor the Juniper Sky ATP events.

Use the monitoring functionality to view the ATP page.


To monitor Juniper Sky ATP events, select Monitor > Events > ATP.


Using the time-range slider, you can quickly focus on the time and area of activity that you are most interested in. Once the time range is selected, all of the data presented in your view is refreshed automatically. You can also use the Custom button to set a custom time range.

You can select either the Grid View tab or the Chart View tab to view your data:

Table 37: ATP—Fields on the Grid View Page




The time when the log was received.

Event Name

Event name of the log.

Source Country

Source country name from where the event originated.

Source Address

Source IP address from where the event occurred.

Destination Country

Destination country name from where the event occurred.

Destination Address

Destination IP address of the event.

Source Port

Source port of the event.

Destination Port

Destination port of the event.


Description of the log.

Source Zone Name

The name of source zone of the log.


Action taken for the event: warning, allow, and block.

Host Name

The hostname in the log.

Interface Name

Name of the interface.


Displays the network or subnetwork to which the device belongs.

Table 38: ATP—Widgets on the Chart View Page



Top Malware Source Countries

Top source countries from where the event source originated; sorted by the number of IP addresses.

Top Infected File Categories

A graph of the top infected file categories. Examples: executables, archived files, libraries. Use the arrows to filter by threat level and time frame.

Top Malwares Identified

Top malware found based on the number of times the malware is detected over a period of time.

See Also

Help us to improve. Rate this article.
Feedback Received. Thank You!

Ask questions in TechWiki

Check documentation in TechLibrary