1. Manuals
  2. Brands
  3. Juniper Manuals
  4. Firewall
  5. Advanced Threat Prevention Appliance
  6. Cli command reference manual

Server; Set Proxy (Collector Mode) - Juniper Advanced Threat Prevention Appliance Cli Command Reference Manual

Hide thumbs
Table of Contents

Advertisement

server

Table 5-14 server
Description
Product(s) CLI
Mode(s)
Syntax
Sub-Commands
Example

set proxy (collector mode)

Table 5-15 set proxy
Description
Product(s) CLI
Mode(s)
Syntax
Enters the server configuration mode.
See Also: collector
All-in-One | Collector | Core/CM | Mac Mini Mac OS X
Basic
server
exit; help; history; ifrestart; ping; reboot; restore; set
(server mode); show (server mode)
The following example enters server configuration mode:
hostname # server
hostname (server) # ?
Sets an Inside or Outside data path proxy from collector mode.
Deploy Traffic Collectors in locations where the monitoring interface is (1) placed
"outside" between the proxy and the egress network for customer environments in
which the proxy supports XFF (X-Forwarded-For), or (2) [the more typical
deployment scenario], the Collector is placed between the proxy and the internal
network using FQDN (if available) to identify the threat source for all types of
incidents ("inside" proxy). When configured, the Juniper ATP Appliance Traffic
Collector will monitor all traffic and correctly identify source and destination hosts
for each link in the kill chain wherever the data allows for it.
Note that if the "X-Forwarded-For" header is provided in the HTTP request,
detection will identify threat targets when deployed outside of the proxy
(customers can choose to disable the XFF feature in the proxy setting, if desired).
See Also: set (server mode); set (diagnosis mode)
NOTE
The mitigation IP address of a CNC server is not be available for
Inside proxy deployments. When a Juniper ATP Appliance is deployed behind
a proxy, the Mitigation-> Firewall page in the Juniper ATP Appliance Central
Manager Web UI (which typically displays the CNC server IP address to
mitigate) will be empty. The destination IP address of any callback is made to
the proxy server ip address, so it is not relevant to display the proxy server IP
address on the Mitigation->Firewall page.
All-in-One | Collector
collector
set proxy inside {add <proxy IP address> <proxy port> |
remove <proxy IP address> <proxy port>
set proxy outside {add <proxy IP address> | remove <proxy
IP address>
Copyright© 2018, Juniper Networks, Inc.
CLI Command Reference Guide
97

Advertisement

Table of Contents
loading

Related Manuals for Juniper Advanced Threat Prevention Appliance

Related Products for Juniper Advanced Threat Prevention Appliance

Table of Contents