Application Identification (AppID)
- Application signature package enhancements (SRX Series
Firewalls)—We've enhanced the application signature package feature to:
- Facilitate two types of downloads—major version (IDP signatures, IDP detector, and application identification protobundle) and minor version (regular signature updates).
- Enable the application signature engine to communicate the status back to the signature package server for installation success or failure (update failures or package errors). The engine stops the installation when errors occur, reverts to the previous version, and reports the status to the server. If multiple devices report a faulty application signature package, the server analyzes the data, marks the package as invalid, and prevents future downloads.
See [ Predefined Application Signatures for Application Identification].
-
Enhancements to application identification (SRX Series Firewalls and vSRX Virtual Firewall) —We've introduced the following enhancements to application identification:
-
Offline installation of an application signature package from a local TAR file
-
CLI command or system log message that generates a list of deprecated application groups
-
Improvements in the policy lookup process for micro-applications.
See [Predefined Application Signatures for Application Identification.]
-