Thursday 4 July 2013

Junos : How to configure Integrated Web Filtering

Step-by-Step Procedure

To configure integrated Web filtering:
  1. Create custom objects and create the URL pattern list.
    [edit security utm]user@host# set custom-objects url-pattern urllist3 value [http://www.juniper.net 1.2.3.4]
  2. Configure the custom URL category list custom object using the URL pattern list.
    [edit security utm]user@host# set custom-objects custom-url-category custurl3 value urllist3
  3. Create a list of untrusted sites
    [edit security utm]user@host# set custom-objects url-pattern urllistblack value [http://www.untrusted.com 13.13.13.13]
  4. Configure the custom URL category list custom object using the URL pattern list of untrusted sites.
    [edit security utm]user@host# set custom-objects custom-url-category custblacklist value urllistblack
  5. Create a list of trusted sites.
    [edit security utm]user@host# set custom-objects url-pattern urllistwhite value [http://www.trusted.com 7.7.7.7]
  6. Configure the custom URL category list custom object using the URL pattern list of trusted sites.
    [edit security utm]user@host# set custom-objects custom-url-category custwhitelist value urllistwhite 

    Configuring Integrated Web Filtering UTM Policies

    CLI Quick Configuration

    To quickly configure this section of the example, copy the following command, paste it into a text file, remove any line breaks, change any details necessary to match your network configuration, and then copy and paste the command into the CLI at the [edit] hierarchy level.
    set security utm utm-policy utmp5 web-filtering http-profile surfprofile1

    Step-by-Step Procedure

    To configure a UTM policy:
    1. Create the UTM policy referencing a profile.
      [edit]user@host# set security utm utm-policy utmp5 web-filtering http-profile surfprofile1

    Results

    From configuration mode, confirm your configuration by entering the show security utm utm-policy command. If the output does not display the intended configuration, repeat the configuration instructions in this example to correct it.
    [edit]userhost#show security utm utm-policy
    ...utm-policy utmp5 {content-filtering {http-profile contentfilter1;}web-filtering {http-profile surfprofile1;}}
    If you are done configuring the device, enter commit from configuration mode. 


     
at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)
loading...