SecIntel Profiles Overview
Juniper Networks Security Intelligence (SecIntel) provides carefully curated and verified threat intelligence from industry-leading threat feeds to Juniper Secure Edge. This enables blocking malicious and unwanted traffic such as Command and Control (C&C) communications, GeoIP, Attacker IPs, and more with minimum latency. SecIntel delivers real-time threat intelligence by enabling automatic and responsive traffic filtering.
Configure SecIntel profiles to work with security intelligence feeds, such as C&C, DNS, and infected hosts. The Security Intelligence process is responsible for downloading the security intelligence feeds and parsing from the feed connector or ATP Cloud feed server. Anything that matches these scores is considered malware or an infected host.
Use the SecIntel Profiles page to manage Command & Control (C&C), DNS, and Infected Hosts profile. To access the page, click .
Field Descriptions - SecIntel Profiles Page
| Field | Description |
|---|---|
| Name | Displays the SecIntel profile name. |
| Type |
Displays if the SecIntel profile is a C&C, a DNS, or an infected hosts profile. |
| Block action |
Displays the notification action taken with the block action. For example, Close session, Drop packet, and Sinkhole. |
| Description | Displays the description of the SecIntel profile. |