Hide Navigation Pane
Show Navigation Pane
Feedback
Download
SHA1
Application Identification Configuration Guidelines
To configure application identification services (APPID), include the application-identification statement at the [edit services] hierarchy level:
[edit services]application-identification {application application-name {disable;idle-timeout seconds;index number;session-timeout seconds;type type;type-of-service service-type;port-mapping {port-range {tcp (port | range);udp (port | range);}disable;}}application-group group-name {application-groups {name [application-group-name];}applications {name [application-name];}index number;disable;}application-system-cache-timeout seconds;max-checked-bytes bytes;min-checked-bytes bytes;no-application-identification;no-application-system-cache;no-clear-application-system-cache;no-protocol-method;no-signature-based;profile profile-name {[ rule-set rule-set-name ];}rule rule-name {disable;address address-name {destination {ip address</prefix-length>;port-range {tcp [ ports-and-port-ranges ];udp [ ports-and-port-ranges ];}}source {ip address</prefix-length>;port-range {tcp [ ports-and-port-ranges ];udp [ ports-and-port-ranges ];}}order number;}application application-name;}rule-set rule-set-name {rule application-rule-name;}traceoptions {file filename <files number> <match regex> <size size> <world-readable | no-world-readable>;flag flag;no-remote-trace;}}
This chapter contains the following sections:
- Defining an Application Identification
- Configuring APPID Rules
- Using Stateful Firewall Rules to Identify Data Sessions
- Configuring Application Profiles
- Configuring Application Groups
- Configuring Global APPID Properties
- Configuring Automatic Download of Application Package Updates
- Tracing APPID Operations
- Examples: Configuring Application Identification Properties
