Administration Portal Help Center Product Info Getting Started FAQs Release Notes
 
Product Info
Getting Started
FAQs
Release Notes
Table Of Contents  

Sky ATP Licensed Features and File Scanning Limits

Sky ATP has two service levels:

  • Free
  • Premium

The free model solution is available to all SRX Series customers that have a valid support contract, but it only scans executable file types. Based on this result, the SRX Series device can allow the traffic or perform inline blocking.

The premium model is available with additional licensing and provides deeper analysis. All file types are examined using several analysis techniques to give better coverage. Full reporting provides details about the threats found on your network.

C&C and GeoIP filtering feeds are only available with a Premium license. For information on licensed features, see the table below.

The following table shows a comparison between the free model and the premium model.

Table 5: Comparing the Sky Advanced Threat Prevention Free Model and Premium Model

Free Model

Premium Model

Management through cloud interface. Zero-on premise footprint beyond the SRX Series device.

Management through cloud interface. Zero on-premise footprint beyond the SRX Series device.

Inbound protection.

Inbound protection.

Inspects only .exe file types.

No restrictions on object file types inspected beyond those imposed by the Sky Advanced Threat Prevention service. You can specify which file types are sent to service for inspection.

Executables go through the entire pipeline (cache, antivirus, static, and dynamic).

Executables, PDF files, and Microsoft Office files (Word document, Excel, and PowerPoint) go through the entire pipeline (cache, antivirus, static, and dynamic).

All other file types only go through the cache and antivirus pipeline.

C&C feeds.

Infected host blocking.

Infected host blocking.

GeoIP filtering.

Up to 2500 files per day per device submitted to cloud for inspection.

Up to 10,000 files per day per device submitted to the cloud for inspection.

Outbound protection.

Outbound protection.

C&C protection with event data returned to the Sky Advanced Threat Prevention Cloud.

Reporting on malware blocked (counts only; no detailed behaviors exposed).

Reporting with rich detail on malware behaviors.

Compromised endpoint dashboard.

File Scanning Limits

There is a limit to the number of files which can be submitted to the cloud for inspection. This limit is dictated by the device and license type.

Table 6: File Scanning Limits

Device

Free License (files per day)

Premium License (files per day)

SRX1500

2,500

10,000

SRX5400

5,000

50,000

SRX5600

5,000

70,000

SRX5800

5,000

100,000

Related Documentation

Help us to improve. Rate this article.
Feedback Received. Thank You!

Ask questions in TechWiki

Check documentation in TechLibrary

Rating by you:          
X

Additional Comments

800 characters remaining

May we contact you if necessary?

Name:
Email:

Need product assistance? Contact Juniper Support

Submit