Feature Explorer AI 
×
You can configure DNS Domain Generation Algorithm (DGA) detection and DNS tunnel detection. This feature enables you to block the malicious domains and DNS-tunneled requests or responses generated by infected hosts and command-and-control (C&C) servers. DGA periodically generates a large number of domain names that are used as rendezvous points (RPs) with their C&C servers. DNS tunneling is a cyberattack method that encodes the data of other programs or protocols in DNS queries and responses.
Use the set security-metadata-streaming policy policy-name detections dga and set security metadata-streaming policy policy-name detections tunneling commands at the [edit services] hierarchy to configure DNS DGA and tunneling detections.
| Product / Application | Software | Introduced Release |
|---|---|---|
| SRX300 | Junos OS | 21.2R1 |
| SRX320 | Junos OS | 21.2R1 |
| SRX340 | Junos OS | 21.2R1 |
| SRX345 | Junos OS | 21.2R1 |
| SRX380 | Junos OS | 21.2R1 |
| SRX550 HM | Junos OS | 21.2R1 |
| SRX1500 | Junos OS | 21.2R1 |
| SRX1600 | Junos OS | 23.4R1 |
| SRX2300 | Junos OS | 23.4R1 |
| SRX4100 | Junos OS | 21.2R1 |
| SRX4120 | Junos OS | 25.2R1 |
| SRX4200 | Junos OS | 21.2R1 |
| SRX4300 | Junos OS | 24.2R1 |
| SRX4600 | Junos OS | 21.2R1 |
| SRX4700 | Junos OS | 24.4R1-S2 |
| SRX5400 | Junos OS | 21.2R1 |
| SRX5600 | Junos OS | 21.2R1 |
| SRX5800 | Junos OS | 21.2R1 |