Hello everyone,
I am trying to configure a Juniper SRX100H2 with Juniper Enhanced web-filtering.
When I edit my web filtering profile and try to add URL Categories from the web interface, I cant, there isnt any categories to choose from.
I managed to find a list of supported categories: http://kb.juniper.net/InfoCenter/index?page=content&id=KB26838
It seems that the only way to go about is to follow this list and manually enter them through the cli.
After I have entered them in the cli and commited they show up inte the web interface but I can never enter or choose from new categories in the web interface.
This is my config:
feature-profile {
web-filtering {
url-whitelist good-category;
url-blacklist bad-category;
type juniper-enhanced;
traceoptions {
flag all;
}
juniper-enhanced {
cache {
timeout 1800;
size 500;
}
server {
host rp.cloud.threatseeker.com;
port 80;
}
profile wf-e-gklaven {
category {
Enhanced_Drugs {
action block;
}
Enhanced_Adult_Content {
action block;
}
Enhanced_Adult_Material {
action block;
}
Enhanced_Alcohol_and_Tobacco {
action block;
}
Enhanced_Bot_Networks {
action block;
}
Enhanced_Emerging_Exploits {
action block;
}
Enhanced_Gambling {
action block;
}
Enhanced_Gay_or_Lesbian_or_Bisexual_Interest {
action block;
}
Enhanced_Hacking {
action block;
}
Enhanced_Illegal_or_Questionable {
action block;
}
Enhanced_Keyloggers {
action block;
}
Enhanced_Marijuana {
action block;
}
Enhanced_Malicious_Web_Sites {
action block;
}
Enhanced_Military {
action block;
}
Enhanced_Nudity {
action block;
}
Enhanced_Personals_and_Dating {
action block;
}
Enhanced_Phishing_and_Other_Frauds {
action block;
}
Enhanced_Potentially_Damaging_Content {
action block;
}
Enhanced_Racism_and_Hate {
action block;
}
Enhanced_Sex {
action block;
}
Enhanced_Sex_Education {
action block;
}
Enhanced_Spyware {
action block;
}
Enhanced_Suspicious_Embedded_Link {
action block;
}
Enhanced_Tasteless {
action block;
}
Enhanced_Violence {
action block;
}
Enhanced_Weapons {
action block;
}
Enhanced_Web_and_Email_Spam {
action block;
}
}
site-reputation-action {
very-safe permit;
moderately-safe permit;
fairly-safe block;
suspicious block;
harmful block;
}
custom-block-message "NOT PERMITTED! BLOCKED BY JUNIPER NETWORKS WEBFILTER.";
fallback-settings {
default log-and-permit;
server-connectivity log-and-permit;
timeout log-and-permit;
too-many-requests block;
}
timeout 1800;
no-safe-search;
}
}
}
}
utm-policy utm-gklaven {
web-filtering {
http-profile wf-e-gklaven;
Policy config:
from-zone Lan to-zone Internet {
policy Internet {
match {
source-address any;
destination-address any;
application any;
}
then {
permit {
application-services {
utm-policy utm-gklaven;
show security utm web-filtering status
UTM web-filtering status:
Server status: Juniper Enhanced using Websense server UP
Is there anything missing in my configuration ?
Best Regards Henrik