Related Documentation
- J Series
- Example: Configuring IDP Applications and Services
- Understanding IDP Application Identification
- IDP Policies Overview
- Understanding IDP Service and Application Bindings by Attack Objects
- SRX Series
- Example: Configuring IDP Applications and Services
- Understanding IDP Application Identification
- Understanding AppTrack
- Understanding the Junos OS Application Identification Application Package
- Understanding Junos OS Application Identification Custom Application Definitions
- IDP Policies Overview
- Understanding IDP Service and Application Bindings by Attack Objects
Understanding Junos OS Application Identification Services
Juniper Networks provides predefined application signatures that detect Transmission Control Protocol (TCP) and User Datagram Protocol (UDP) applications running on nonstandard ports. Identifying applications provides the following benefits:
- Enables you to track and report applications passing through the device using AppTrack.
- Allows Intrusion Detection and Prevention (IDP) to apply appropriate attack objects to applications running on nonstandard ports.
- Improves performance by narrowing the scope of attack signatures for applications without decoders.
- Enables you to create application-based rules and firewalls using AppFW.
- Provides quality of service prioritization based on application awareness using AppQoS.
Application signatures identify an application by matching patterns in the first few packets of a session. The application identification module matches patterns for both client-to-server and server-to-client sessions.
Application identification is enabled by default and is automatically turned on when you configure Intrusion Detection and Prevention (IDP), AppFW, AppQoS, or AppTrack. However, when you specify an application in the policy rule, application identification is disabled and attack objects are applied based on the specified application. This specific application configuration overwrites the automatic identification process.
 | Note: Updates to the Junos OS predefined application signature package are authorized by a separately licensed subscription service. You must install the application identification application signature update license key on your device to download and install the signature database updates provided by Juniper Networks. When your license key expires, you can continue to use the locally stored application signature package contents but you cannot update the package. |
Related Documentation
- J Series
- Example: Configuring IDP Applications and Services
- Understanding IDP Application Identification
- IDP Policies Overview
- Understanding IDP Service and Application Bindings by Attack Objects
- SRX Series
- Example: Configuring IDP Applications and Services
- Understanding IDP Application Identification
- Understanding AppTrack
- Understanding the Junos OS Application Identification Application Package
- Understanding Junos OS Application Identification Custom Application Definitions
- IDP Policies Overview
- Understanding IDP Service and Application Bindings by Attack Objects
