Example: Configuring Content Filtering UTM Policies

This example describes how to create a content filtering UTM policy to attach to your feature profile.

Requirements

Before you begin:

  1. Decide on the type of content filter you require. See Content Filtering Overview.
  2. Configure UTM custom objects for each feature and define the content-filtering profile. See Content Filtering Configuration Overview.

Overview

You configure UTM policies to selectively enforce various UTM solutions on network traffic passing through a UTM-enabled device. Through feature profiles you associate custom objects to these policies and specify blocking or permitting certain types of traffic.

In this example, you configure a UTM policy called utmp4, and then assign the preconfigured feature profile confilter1 to this policy.

Configuration

Step-by-Step Procedure

To configure a content filtering UTM policy:

You can configure different protocol applications in utm-policy. The example only show http and not other protocols. Earlier we configure custom objects for ftp (ftpprotocom1 and ftpprotocom2). We should add content filter policy for ftp. e.g.

set security utm utm-policy utmp4 content-filtering ftp upload-profile confilter1

set security utm utm-policy utmp4 content-filtering ftp download-profile confilter1

  1. Create a UTM policy.
    [edit security utm]user@host# set utm-policy utmp4
  2. Attach the UTM policy to the profile.
    [edit security utm]user@host# set utm-policy utmp4 content-filtering http-profile contentfilter1
  3. If you are done configuring the device, commit the configuration.
    [edit]user@host# commit

Verification

To verify the configuration is working properly, enter the show security utm command.

Related Topics

Junos OS Feature Support Reference for SRX Series and J Series Devices

Copyright© 1999-2010 Juniper Networks, Inc. All rights reserved.