Navigation
Table of Contents
Guide That Contains This Content
[+] Expand All
[-] Collapse All
Disabling Automatic Logging of Culprit Flow Events for a Packet Type
By default, flow detection automatically logs policer violation events associated with suspicious flows (violation reports) and culprit flow events (flow reports) for all protocol groups and packet types. You can include the no-flow-logging statement to prevent automatic logging of culprit flow events for individual packet types. Automatic logging of suspicious flow violation events is disabled with the disable-logging statement at the [edit system ddos-protection global hierarchy level.
To disable automatic culprit flow event logging for a packet type:
- Disable logging.[edit system ddos-protection protocols protocol-group packet-type]user@host# set no-flow-logging
To disable automatic suspicious flow violation event logging for a packet type:
- Disable logging.[edit system ddos-protection protocols protocol-group packet-type]user@host# set disable-logging
For example, include the following statement to disable automatic logging for DHCPv4 DISCOVER packet flows:
[edit system ddos-protection protocols dhcpv4 discover]user@host# set no-flow-logging
