Application Signature Configuration Page Options

Use the following procedure to download predefined application signatures and to view installed application signatures and their status.

  1. Select Configure>Security>AppSecure Settings in the J-Web user interface to display the Application Signature page.

    The display lists all enabled and disabled application signatures on the device. Table 91 describes the content of this page.

  2. Click one:
    • Global Settings—Defines run specifications for application identification or for an automatic downloading schedule. Table 92 describes the content of the Global Settings page.
      • Select the App-Signature Global Settings tab to define run conditions, and to enable or disable application signatures and the application system cache.
      • Select the Download Scheduler tab to set up a schedule for automatic downloads of the latest predefined application signature package.
    • Download—Manually downloads the latest predefined application signature package. Table 93 describes the content of the Manually Download page.
    • Check Status—Monitors the progress of an active manual or scheduled download.
    • Uninstall—Removes application signatures that are currently installed on your device.

      On SRX1400, SRX3400, SRX3600, SRX5600, and SRX5800 devices, specify the type of signature to uninstall. Choose one of the uninstall options:

      • Customized—Uninstalls all customized application signatures on your device. This option does not uninstall predefined application signatures.
      • Predefined—Uninstalls all predefined application signatures on your device. This option does not uninstall any customized applications.
      • All—Uninstalls all customized and predefined application signatures on your device.
  3. Click one:
    • OK–Saves the configuration and returns to the main configuration page.
    • Commit Options>Commit–Commits the configuration and returns to the main configuration page.
    • Cancel–Cancels your entries and returns to the main configuration page.

Table 91: Application Signature Configuration Page

Field

Function

Application Signatures

Name Search

Provides a search alternative to quickly display a specific application signature name.

Enter a name, and click Search to refresh the display with the specified application signature.

Clear

Clears the Name Search field and redisplays the full list.

Name

Displays the application signatures installed on the device or the single application signature specified in Name Search.

Classifier Name

(Optional) If one or more classifiers are specified in the application signatures, a column is displayed for each classifier. If classifiers have not been defined for any application signature, only the Name and Status columns are displayed.

The column heading contains the classifier name. Column entries specify the classifier values for each application signature. A blank entry in a column means that the classifier has not been defined for the associated application signature.

Status

Specifies whether the application signature is enabled or disabled.

All application signatures are enabled by default. To disable or reenable an application signature, use the CLI to include or remove the disable configuration option in the services application-identification application hierarchy.

Table 92: Global Settings Details

Field

Function

Action

App-Signature Global Settings Tab

 

App-Signature Global Settings

 

Disable Application Signature

Disables application identification use. By default, application identification use is enabled.

Click the Disable Application Signature check box to disable application identification use.

Enable System Cache

Enables the system cache that maintains application identification results. By default, the application system cache is disabled.

Click the Enable System Cache check box to enable the cache and maintain application identification results.

Enable Heuristics

Enables heuristics to improve the rate of detection of encrypted data packets.

Click the Enable Heuristics check box to improve detection of encrypted data packets.

Note: Enabling heuristics could impact performance.

System Cache Timeout

Specifies the amount of time application identification results will be maintained in the system cache. The default value is 3600 seconds.

Enter the length of time that information is to be kept in the system cache.

Max Sessions

Specifies the maximum number of sessions that can use application identification detection at the same time.

Enter the maximum number of application identification sessions allowed.

Total Max Check Bytes

Specifies the maximum number of bytes to check for an application signature. The default value is 10,000 bytes.

Enter the maximum number of bytes to be checked. The number can range from 0 through 100,000 bytes.

Nested App-Signature Global Settings

 

Disable Nested App-Signature

Disables nested application identification use. By default, nested application identification use is enabled.

Select the Disable Nested Application Signature check box to disable nested application identification use.

Enable System Cache

Enables the application system cache for nested application identification results. By default, the system cache for nested application identification is disabled.

If caching is enabled for application identification results, select the Enable System Cache check box to enable caching for nested application identification results as well.

Download Scheduler Tab

 

URL

Specifies the site from which the predefined application signature package will be downloaded. Use this option when the download location is different from the default location.

If the default location is not being used, enter the URL of the preferred download location.

Enable Schedule Update

Enables scheduled automatic updates of the predefined application signature package. By default, scheduled automatic updates are disabled.

Select the Enable Schedule Update check box to enable automatic scheduled updates.

Interval

Specifies the number of hours between automatic updates of predefined application signatures.

Enter the download interval. The range is 6 through 720 hours.

Start Time

Specifies the month, day, and time of the first update. (The Start Time is significant for only the first automatic download. After that, automatic updates occur after the specified interval.)

Enter the time for the first download in MM-DD.hh:mm format using a 24-hour clock.

Reset Setting

Resets the default setting for each field.

Click Reset Setting to clear fields before entering new values.

Table 93: Manually Download Details

Field

Function

Action

URL

Specifies the site from which the predefined application signature package will be downloaded.

Version

Specifies the version to be downloaded.

Select Latest to download the latest application signature package available.

Otherwise, select and enter the version number of the application signature package to be downloaded.

Related Documentation