Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
 

Create an IPS Signature Static Group

The signature database in Juniper Security Director Cloud contains predefined intrusion prevention system (IPS) signature static groups.

You can create customized IPS signature static groups from the Create IPS Signature Static Group page. You must have the tenant administrator role or a custom role assigned with the appropriate IPS tasks to create customized IPS signature static groups.

Static groups enable better manageability because you can group different types of signatures into one entity.

To create a customized IPS signature static group:

  1. Select SRX > Security Subscriptions > IPS > IPS Signatures.

    The IPS Signatures page opens.

  2. Select Create > Static Group.

    The Create IPS Signature Static Group page opens.

  3. Complete the configuration according to the guidelines in Table 1.
    Note:

    Fields marked with an asterisk (*) are mandatory.

  4. Click OK.

    The IPS Signatures page opens with a message that the static group was successfully created.

    You can use the new IPS signature static group in an IPS rule or an exempt rule. You can then reference the IPS profile containing the rule in a firewall policy, which you can deploy on the device.

    Table 1: Create IPS Signature Static Group Settings

    Setting

    Guideline

    Name

    Enter a unique name for the IPS signature static group that is a string of maximum 127 characters without spaces.

    The string can contain alphanumeric characters and special characters, such as colons, hyphens, periods, and underscores.

    Description

    Enter a description of maximum 1024 characters for the IPS signature static group.

    Group Members

    Add one or more IPS signatures, static groups, or dynamic groups as members of the new static group.

    Note:

    You must add at least one IPS signature, static group, or dynamic group to proceed.

    • To add group members:

      1. Click the add (+) icon.

        The Add IPS Signatures page opens displaying the existing predefined and customized IPS signatures, static groups, and dynamic groups in a table.

      2. Select one or more group members by clicking the check boxes corresponding to the rows.

      3. Click OK.

        The previous page opens and the selected group members are displayed in the table.

    • To delete group members:

      1. Select the group members to delete, and click the delete (trash can) icon.

        A warning message asking you to confirm the deletion is displayed.

      2. Click Yes.

        The group members are deleted.