Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
ON THIS PAGE
 

profile(dynamic-application)

Syntax

Hierarchy Level

Description

Define a profile to provide an explanation for the policy action or to redirect the client request to an informative webpage when a policy blocks HTTP or HTTPS traffic with a deny or reject action in a security policy.

Although drop and reject actions can be logged, the users might not be notified when either action is taken. To provide a reason for the action or to redirect the users to an informative webpage, use the redirect-message option at the [edit security dynamic-application profile name] hierarchy level to display a custom message.

Customize the redirect action by adding your text message on the splash screen or specify the URL to which the user is redirected. When the redirect message option is specified, a splash screen and message informs the client that the traffic has been blocked.

Starting in Junos OS Release 18.2R1, a redirect profile can be configured in a unified policy.

Options

name

Name of the profile.

  • Values:

    redirect-message

    Defines the profile of the notification sent to clients when HTTP or HTTPS traffic is blocked by a reject or deny action from an application firewall.
    type

    The message type displayed after a reject or deny action.
    custom-text

    Text message in HTML added to the default text. If custom-text is specified, the splash screen displays both the default block message and the custom-defined block message.

    The user is redirected when a reject or deny action is taken during one of the following HTTP methods: GET, POST, OPTIONS, HEAD, PUT, DELETE, TRACE, CONNECT, PROPFIND, PROPPATCH, LOCK, UNLOCK, COPY, MOVE, MKCOL, BCOPY, BDELETE, BCOPY, BMOVE, BPROPFIND, BPROPPATCH, POLL, SEARCH, SUBSCRIBE, and UNSUBSCRIBE. If the reject or deny action occurs during a different HTTP method, the traffic is silently dropped.
    content

    Custom text added to the splash screen. Custom text is inserted below the default message. Add the characters \n to insert a line break in the displayed text.
    redirect-url

    Custom URL redirection.
    content

    The URL of the webpage to which the client is directed. When traffic is rejected or denied, the client is redirected to the specified webpage for further action. The URL can be hosted on either the SRX Series device or an external server.

    Enter the redirect URL in quotation marks for an HTTP or HTTPS site, as shown in the following example:

    “https://custom-redirect-url”

Required Privilege Level

security—To view this statement in the configuration.

security-control—To add this statement to the configuration.

Release Information

Statement introduced in Junos OS Release 18.2R1.

Related Documentation