SRX

last person joined: yesterday 

Ask questions and share experiences about the SRX Series, vSRX, and cSRX.

  • 1.  UTM AV HTTP update session: ¿can it be done via HTTP proxy?

    Posted 08-21-2012 06:21

    Hello team.

    A customer of mine bought a SRX240 firewall with Kaspersky AV license. For the time being, while this SRX is in testing mode, it must reside on an internal lab behind the current corporate firewall.

     

    Because of corporate policies, every HTTP session must be carried out through an HTTP proxy. Therefore the HTTP session generated by the SRX to get AV signature updates from Juniper must also pass through this proxy.

     

    ¿ Is there a way to "tell" JUNOS that the update session must pass through a proxy?

     

    Any hints will be greatly appreciated...

    Best regards

     

    Rogelio Alvez

    Argentina

     

     

     



  • 2.  RE: UTM AV HTTP update session: ¿can it be done via HTTP proxy?
    Best Answer

    Posted 08-21-2012 07:27

    Hi

     

    Check out this

     

    lab@J-test# set security utm feature-profile anti-virus kaspersky-lab-engine pattern-update proxy ?
Possible completions:
  <[Enter]>            Execute this command
+ apply-groups         Groups from which to inherit configuration data
+ apply-groups-except  Don't inherit configuration data from these groups
  password             Proxy server password
  port                 Proxy server port (0..65535)
  server               URL or IP address of the proxy server host
  username             Username for proxy server
  |                    Pipe through a command

     



  • 3.  RE: UTM AV HTTP update session: ¿can it be done via HTTP proxy?

    Posted 08-21-2012 08:31

    Thanks a lot. I haven´t noticed this option in the configuration.

     

    Best regards, Rogelio