Table 31: Application Table Tab Information; Blocked Hosts; Configuring Application Objects; Viewing Predefined Application Objects - Juniper NETWORK AND SECURITY MANAGER 2010.2 - ADMINISTRATION GUIDE REV1 Administration Manual

Network and Security Manager Administration Guide

Blocked Hosts

Configuring Application Objects

Viewing Predefined Application Objects

Table 31: Application Table Tab Information

Name
Application Category
Port Range
Application Type
Port Binding
Match Order
330
NSM can block the IP address of hosts where login attempts fail consecutively for a
specified number of times. The default value is 5 times. NSM saves a list of these blocked
IP addresses. Select Tools > Managed Blocked Hosts to display a list of blocked hosts
or to clear the blocked IP addresses. If the local host is blocked, you must use another
computer to use this option to unblock the host IP address.
You can view all application objects and create new custom application objects from
the Object Manager.
The Predefined Application Objects
predefined application objects in NSM. You can view the predefined Application objects
in a table format with the following details.
The name of the application object.
The hierarchical category to which the application belongs.
The TCP/UDP port ranges to be matched with application signatures. Specifying a small range
improves system performance. You must configure either a TCP or UDP field; while optionally, you
can configure both.
The type of application-predefined or custom type.
application while it is not required for a predefined type.
The default TCP/UDP port bindings required for custom application types only. You must configure
either TCP or UDP or optionally, both of them.
An integer value used to resolve conflict when multiple application signatures are matched for a
session. In that case, the application signature with the highest order (smallest value) is taken. It
is assumed that no two signatures have the same order value, in which case the first application
signature IDP sees (not necessarily the first one in policy) is taken.
You can double-click on an application object to view its settings which include the
following additional information:
Supported Platforms
Application signature definition (including Client-to-Server DFA and PCRE patterns
and Server-to-Client DFA and PCRE patterns)
Minimum data length which is the minimum number of layer-7 data bytes that the first
data packet requires to make a successful match. This applies to both Client-to-Server
and Server-to-Client packets.
tab in the Application Objects
is required for a custom type
Port Binding
Copyright © 2010, Juniper Networks, Inc.
window lists all the