dynamic-application (Security Policies)
Statement introduced in Junos OS Release 18.2R1.
Specify the dynamic applications or dynamic application groups used as match criteria within a security policy.
By adding dynamic applications to the match criteria, the data traffic is classified based on the Layer 7 application inspection results. Application Identification (AppID) identifies dynamic or real-time Layer 4 through Layer 7 applications. After a particular application is identified and the matching policy is found, then the actions are applied according to the policy.
Examples for dynamic applications or dynamic application groups are as follows:
junos:FTP (dynamic application)
junos:web:shopping (dynamic application group)
When upgrading the Junos OS release from previous releases (where dynamic applications were not supported), all existing traditional policies are considered as policies with the dynamic application configured as none.
If dynamic application is not configured within a security policy, the policy is considered to be a traditional security policy. This policy is similar to a policy with the dynamic application configured as none.
Required Privilege Level
security—To view this statement in the configuration.
security-control—To add this statement to the configuration.