Configure DAG Filter

Access the DAG Filters page from the Shared Services > Advanced Threat Prevention > SecIntel Feeds menu.

Use a Dynamic Address Group (DAG) filter to add feeds for the AWS regions and services that you select. You can configure a maximum of 10 DAG filters for the AWS.

Benefits of DAG filter

You can filter and view the feeds from specific AWS regions and services that are relevant to you.

Note:

If you do not configure a DAG filter, the generic feeds from all regions and services are displayed. You must configure at least one DAG filter to not get the generic feeds.

To configure DAG filters, do the following:

Select Shared Services > Advanced Threat Prevention > SecIntel Feeds > DAG Filters.

The DAG Filters page appears.
Click the plus sign (+).

The Create DAG Filter window appears.
(Optional) Enter a description for the DAG filter.
Select region from the Region list.
Select service from the Service list.

The name for the DAG filter is automatically generated in the Name field when you select the region and service. You cannot edit the DAG filter name.

Note:
The exact names for AWS regions and services are displayed in the Name field for the DAG filter. This mapping is applicable only for the manifest file so that the DAG feed name is supported on the SRX Series Firewall.

Junos OS supports a maximum length of 32 characters for the DAG filter name. If the feed name exceeds the limit, the cloud feeds manifest file will not display the feed name.
Click OK.

You can see the DAG feeds for the selected AWS region and service in the DAG Filter page.