Are you using Juniper SRX devices for security enforcement? Do you have Screens configured?
If "yes" to the first, but "no" to the second I'd advise you to
- read this
- think about it for a little while
- proceed cautiously with an implementation ?
- return here/LM Exchange to import this datasource (once it passes LM review) to get visibility into the signature-based screens you put in place
If "yes" to both
- import this datasource (once it passes LM review) to get visibility into the signature-based screens you put in place
NOTES:
- Locator ID A3X9GD
- this datasource only captures signature-based screens. If you want the stats-based stuff, you are on your own ?
- it doesn't indicate whether you chose to forward or drop matching traffic
- OOB it has no alert thresholds
- s/o to @Stuart Weenigfor kick-starting me on this back in the late spring.....see what happens when you attend Office Hours and ask questions ?