Statement introduced before Junos OS Release 7.4.
Specify the prefix length for source IPv4 address aggregation for the IDS rule. This applies session limits to an aggregation of all attacks from within a subnet of the specified length.
For example, if you configure a value of 24 for source-prefix, then attacks from 10.1.1.2 and 10.1.1.3 are counted as attacks from the 10.1.1/24 subnet. However, if a single host on a subnet generates a large number of network probing or flooding attacks, the flows for the entire subnet might be stopped.
Range: 1 through 32
Required Privilege Level
interface—To view this statement in the configuration.
interface-control—To add this statement to the configuration.