tcp port-scan threshold (IDS Screen Next Gen Services)
Statement introduced in Junos OS Release 19.3R2 on MX Series routers (MX240, MX480 and MX960) running Next Gen Services with the MX-SPC3 services card.
Detect port scans across a particular host. It differs from the TCP Sweep Screen, which identifies packets being sent across hosts (horizontal scan) versus across ports on a single host to identify what services are available (vertical scan). If 10 TCP attack packets are detected within the configured time that you set (xxxx microseconds), then the device .
The default time set is 5000 microseconds.
Range: 1000 through 1,000,000 microseconds
Required Privilege Level
interface—To view this statement in the configuration.
interface-control—To add this statement to the configuration.