Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
 

SRX Series Firewall Commands to Configure Juniper ATP Cloud

We've consolidated all Junos CLI commands and configuration statements in one place. Learn about the syntax and options that make up the statements and commands and understand the contexts in which you’ll use these CLI elements in your network configurations and operations.

Use the below configuration statements and operational commands to configure, monitor, and manage Juniper ATP Cloud features in SRX Series Firewalls and vSRX Virtual Firewall instances.

Table 1: Configuration Statements

Statement

Description

advanced-anti-malware connection

Check and verify the status of connection to the cloud server from the SRX Series Firewall.

advanced-anti-malware policy

Configure the Juniper ATP Cloud policy.

advanced-anti-malware traceoptions

Trace the Juniper ATP Cloud configuration for troubleshooting.

application-services (security-metadata-streaming)

Enable security metadata streaming-policy on SRX Series Firewall.

anti-virus

Configure flow-based antivirus policy.

category (Security Logging)

Set the category of logging.

dns-filtering

Configure DNS filtering to identify DNS requests for disallowed domains

dynamic-filter

Configure dynamic filtering options for security metadata streaming policy on SRX Series Firewalls.

security-intelligence(services)

Configure SecIntel profiles and policies to work with SecIntel feeds, such as infected hosts and C&C.

security-intelligence

Add source and destination addresses to the SecIntel profiles.

security-metadata-streaming

Configure security metadata streaming policy on SRX Series Firewalls.

Table 2: Operational Commands

Command

Description

clear services advanced-anti-malware statistics

Set the AAMW statistics to 0.

clear services dns-filtering cache

Clear all entries in the DNS cache.

clear services security-metadata-streaming

Set the DNS and HTTP security-metadata-streaming statistics to 0.

clear services security-intelligence dns-statistics

Set DNS statistics to 0.

request services advanced-anti-malware data-connection

Test the connection between the SRX Series Firewall and the Juniper ATP Cloud by initiating a web socket connection and then sending data payloads of a given size.

request services advanced-anti-malware diagnostic

Verify your Internet connection to the cloud before enrolling your SRX Series Firewall with Juniper ATP Cloud.

request services advanced-anti-malware redirect-file

Add a customized file for users to be directed to.

request services anti-virus update

Trigger antivirus database update immediately.

show services advanced-anti-malware policy

Verify the policy on the SRX Series Firewall for debugging purposes

show services advanced-anti-malware profile

Verify you are sending the correct files to the cloud during troubleshooting.

show services advanced-anti-malware statistics

Displays the Juniper ATP Cloud statistics, such as total number of sessions processed and number of sessions blocked.

show services advanced-anti-malware status

Displays the connection status between the Juniper ATP Cloud service and the SRX Series Firewall.

show services advanced-anti-malware dynamic-filter status

Displays the connection status between the Juniper ATP Cloud service and the SRX Series Firewall.

show services anti-virus statistics

Displays the statistics of antivirus database.

show services dns-filtering cache

Show all entries within the DNS cache.

show security dynamic-address

Displays information about dynamic addresses.

show services security-metadata-streaming

Displays the statistics of security metadata streaming sessions for HTTP and DNS protocols, and allowlist servers that are configured by the users for HTTP protocol.

show security flow session advanced-anti-malware

Display information about all currently active AAMW sessions on the device

show services security-intelligence dns-statistics

Displays the DNS profile statistics.

show services security-intelligence update status

Display the status of the connection with Policy Enforcer.

show services security-intelligence category summary

Displays the status of security profiling feeds.

show services security-intelligence

Display summary for the specified SecIntel category.