Juniper Netscreen 1000 Firewall Configuration

set zone "Untrust" screen icmp-flood
set zone "Untrust" screen udp-flood
set zone "Untrust" screen syn-fin
set zone "Untrust" screen fin-no-ack
set zone untrust screen alarm-without-drop
set zone untrust screen ip-spoofing

I have the above security commands in my Juniper Netscreen 1000 Firewall.
I would lik to setup mail alerts in case if any of the above security violation occurs,
Let me know if this is possible. If possible how should i setup the mail alerts if any of the above security violation occurs.
LVL 1
SrikantRajeevAsked:
Who is Participating?
 
dpk_walConnect With a Mentor Commented:
Send traffic that triggers the alert and you can test.
0
 
SrikantRajeevAuthor Commented:
can i have some answers
0
 
dpk_walCommented:
Have a look at link below:
http://kb.juniper.net/InfoCenter/index?page=content&id=KB4755

See if this helps you achieve what you wish.

Thank you.
0
Managing Security & Risk at the Speed of Business

Gartner Research VP, Neil McDonald & AlgoSec CTO, Prof. Avishai Wool, discuss the business-driven approach to automated security policy management, its benefits and how to align security policy management with business processes to address today's security challenges.

 
SrikantRajeevAuthor Commented:
i have gone through the link.
It has the field to specify the e-mail ID to which the alert mail will be sent.
But what will be the sender e-mail ID for this.
0
 
SrikantRajeevAuthor Commented:
Also I would like to check should i need to include any ACL or by the configurations mentioned in the link the mail alerts will be sent to the mail servers
0
 
dpk_walCommented:
By default, all email alerts are sent with source identity of netscreen@[a.b.c.d], where a.b.c.d represents the IP address of the NetScreen.
To force the email alerts to be sent with an email address fqdn, domain name needs to be configured on the NetScreen, please see KB article below:
http://kb.juniper.net/InfoCenter/index?page=content&id=KB6182

There is no need of a policy for sending out email alerts.

Please let know if you need more details.

Thank you.
0
 
SrikantRajeevAuthor Commented:
Thanks
How can i define the subject of the e-mail or what is the default subject line
Is there any way we can define the subject line
0
 
dpk_walCommented:
I do not think the subject of the email can be configured; please use default subject as sent by firewall.
0
 
SrikantRajeevAuthor Commented:
ok let me try
but is it sure that i dont need to define any separate ACL to allow the alert mail to generate & hit the exchange server
0
 
SrikantRajeevAuthor Commented:
but is it sure that i dont need to define any separate ACL to allow the alert mail to generate & hit the exchange server
0
 
dpk_walCommented:
You do not need any policy; have you configured; is it not working.
If you have another device between your network and juniper firewall then I cannot comment.
0
 
SrikantRajeevAuthor Commented:
thanks
i will be trying it by next week.
Will check it out if it is working fine or not.
0
 
SrikantRajeevAuthor Commented:
I have configured the alerting mechanism.
Is there any way i can test the mail from these firewalls
0
 
SrikantRajeevAuthor Commented:
Thanks
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.