Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 

source-prefix (IDS)

 

Syntax

Hierarchy Level

Release Information

Statement introduced before Junos OS Release 7.4.

Description

Specify the prefix length for source IPv4 address aggregation for the IDS rule. This applies session limits to an aggregation of all attacks from within a subnet of the specified length.

For example, if you configure a value of 24 for source-prefix, then attacks from 10.1.1.2 and 10.1.1.3 are counted as attacks from the 10.1.1/24 subnet. However, if a single host on a subnet generates a large number of network probing or flooding attacks, the flows for the entire subnet might be stopped.

Options

prefix-value—Integer value.

Range: 1 through 32

Required Privilege Level

interface—To view this statement in the configuration.

interface-control—To add this statement to the configuration.

Related Documentation