Message Image

Skip main navigation (Press Enter).

SRX

last person joined: yesterday

Ask questions and share experiences about the SRX Series, vSRX, and cSRX.

Back to discussions

Expand all | Collapse all

nested application

Jump to Best Answer

Erdem05-30-2017 11:48

How to block a nested application but leave the main page available ?? can this be done by using AppFW ...

lyndidon05-30-2017 20:47Best Answer

Yes. it can be done: http://www.juniper.net/documentation/en_US/junos12.1x44/topics/example/application-firewall-application-group-configuring.html ...

1. nested application

0 Recommend
Erdem
Posted 05-30-2017 11:48

Reply Reply Privately
How to block a nested application but leave the main page available ??

can this be done by using AppFW + IDP policy ???
2. RE: nested application
Best Answer

0 Recommend
lyndidon
Posted 05-30-2017 20:47

Reply Reply Privately
Yes. it can be done:

http://www.juniper.net/documentation/en_US/junos12.1x44/topics/example/application-firewall-application-group-configuring.html

You would still need to see the details of the applications and the nested applications so you can determine what you want to block.

Configured under

edit security application-firewall

create rule-sets and rule to match dynamic application BlockYoutube-Apps<===rule-set

decide if using whitelist/blacklis

Apply the rule set within a security policy for e.g.

edit security policies from-zone trust to-zone untrust

then {

        permit {

            application-services {

                application-firewall {

                    rule-set block BlockYoutube-Apps;

Powered by Higher Logic