Security

last person joined: 8 days ago 

Ask questions and share experiences with Juniper Connected Security. Discuss Advanced Threat Protection, SecIntel, Secure Analytics, Secure Connect, Security Director, and all things related to Juniper security technologies.

  • 1.  question: how to upgrade attack code at per hour,and automatically loaded into the detector

    Posted 04-01-2009 21:49

    hi :

    because I am not too familiar with the Automatic updates for IDP attack code,So please help to guide you
    how to upgrade attack code at per hour,and automatically loaded into the detector?

     



  • 2.  RE: question: how to upgrade attack code at per hour,and automatically loaded into the detector

    Posted 04-02-2009 07:17

     Hi,

    you can schedule the attack DB update.

    This is described in the NSM Administration Guide available here:

     http://www.juniper.net/techpubs/software/management/security-manager/

     

    To configure a scheduled security update using crontab:
    1. Log into the GUI server.
    2. Change to the utility directory by typing: cd /usr/netscreen/GuiSvr/utils.
    3. Create a shell script with the following elements:

    ■ Set the NSMUSER environment variable with an NSM domain/user pair. The
    command for setting environment variables depends on your OS.
    Example: export NSMUSER=domain/user
    ■ Set the NSMPASSWD environment variable with an NSM password. The
    command for setting environment variables depends on your OS and shell.
    Example: export NSMPASSWD=password
    ■ Specify a guiSvrCli command string.
    Example: /usr/netscreen/GuiSvr/utils/guiSvrCli.sh --update-attacks
    --post-action post_action_options

     

    4. Make the script executable. Make sure the person who will create the cron job
    has permission to run the script.
    5. Run the crontab editor.
    crontab -e
    6. Add an entry for the shell script
    <minutes after hour> <hour> * * * path/attack_update_shell_script
    During the update, the guiSvrCli utility updates its the attack object database, then
    performs the post actions. After updating and executing actions, the system generates
    an exit status code of 0 (no errors) or 1 (errors).

     

     

    Check the manual for more examples and details :smileyhappy:

     

    Ciao

    Daniele

     



  • 3.  RE: question: how to upgrade attack code at per hour,and automatically loaded into the detector

    Posted 04-07-2009 22:39
    I do not understand is that "<minutes after hour> <hour> ",
    For example:
    "30 13" is updated every day a 1:30 p.m., or once every 13 hours and 30 minutes to update again?


  • 4.  RE: question: how to upgrade attack code at per hour,and automatically loaded into the detector

    Posted 04-08-2009 05:04

    Hi,

    if you put:

     

     30 13 * * *

     

    it means that the task will be executed every day at 13:30 🙂

     

    You can see more examples and a complete explanation doing:

    man 5 crontab

     

    Ciao! 🙂

    Daniele



  • 5.  RE: question: how to upgrade attack code at per hour,and automatically loaded into the detector

    Posted 04-10-2009 20:58
    i see ,thank you.


  • 6.  RE: question: how to upgrade attack code at per hour,and automatically loaded into the detector
    Best Answer

    Posted 04-14-2009 01:31

    Hi,

    did this solve your prolem?

     

    If yes, can you mark the post as accepted solution? 

     

    Thanks! 🙂

    Daniele