Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
 

Juniper Advanced Threat Prevention Cloud (ATP Cloud)

AI-Predictive Threat Prevention leverages machine learning-based zero-day threat detection (SRX Series Firewall and vSRX Series Firewall)—Starting in Junos OS Release 24.2R1, you can configure machine learning-based threat detection for zero-day threats at line rate. File scanning during threat detection happens without Internet access and only a small section of file data is sufficient for the detection to return a verdict. Machine learning-based threat detection becomes available on your firewall when the latest antivirus signature pack is automatically downloaded from the Juniper Networks content delivery network (CDN) server to your firewall.

[See Example: Configure Flow-Based Antivirus Policy, anti-virus, and show services anti-virus statistics.]

  • System log messages for GeoIP (SRX Series Firewalls and vSRX3.0)—Starting in Junos OS Release 24.2R1, we've enhanced the IP-based geolocation (GeoIP) feature to provide improved consistency checks and logging from SRX Series Firewalls that are enrolled with Juniper ATP Cloud.

    The session deny message includes the following fields:

    • source-country—Displays the country code of the source address with reference to the policy dynamic address match.
    • destination-country—Displays the country code of the destination address with reference to the policy dynamic address match.

    The system log message displays the valid country code only if the matched policy includes a dynamic address configured with GeoIP. If the matched policy does not have GeoIP configured, then the source-country and destination-country fields display N/A.

    [See System Log Explorer and Configure Juniper Advanced Threat Prevention Cloud With Geolocation IP].