show system license usage ### License Installation request system license add terminal ### Configuring the type of engine set security utm feature-profile anti-virus type sophos-engine Note: Beginning in 18.4R1, where to configure this feature has changed set security utm default-configuration anti-virus type sophos-engine ### Configure the UTM policies for the desired protocols set security utm utm-policy sophos-utm-policy anti-virus http-profile junos-sophos-av-defaults set security utm utm-policy sophos-utm-policy anti-virus ftp upload-profile junos-sophos-av-defaults set security utm utm-policy sophos-utm-policy anti-virus ftp download-profile junos-sophos-av-defaults set security utm utm-policy sophos-utm-policy anti-virus smtp-profile junos-sophos-av-defaults ### Apply this UTM policy in a security policy set security policies from-zone trust to-zone untrust policy utm-security-policy match source-address any set security policies from-zone trust to-zone untrust ...
## Hub Firewall set system host-name vSRX-1-HUB-FW set system root-authentication encrypted-password "$1$Ck/1H8ol$.wgjY7Q54JDYLt.8uJcKX0" set system syslog user * any emergency set system syslog file messages any any set interfaces ge-0/0/3 unit 0 family inet address 2.2.2.1/30 set interfaces ge-0/0/2 unit 0 family inet address 10.1.2.1/24 ### Step-2: Create security-zones and assign interface(s). Create address-book for Spoke & Hub LAN subnets. set security zones security-zone LAN interfaces ge-0/0/2.0 host-inbound-traffic system-services all set security zones security-zone WAN interfaces ge-0/0/3.0 host-inbound-traffic system-services all set security address-book global address WAN-1 10.1.0.0/23 set security address-book global address LAN-1 10.1.2.0/23 set security address-book global address-set SPOKE-LAN address WAN-1 set security address-book global address-set HUB-LAN address LAN-1 ### Step-3: Configuring IKE Phase-1 Parameters set security ike proposal IKE-PH...
Comments
Post a Comment