Hide Navigation Pane
Show Navigation Pane
Feedback
Download
SHA1
direction (Dynamic Attack Group)
Syntax
direction { values [any | client-to-server | exclude-any | exclude-client-to-server
| exclude-server-to-client | server-to-client]; }
Hierarchy Level
[edit security idp dynamic-attack-group
dynamic-attack-group-name filters]
Release Information
Statement introduced in Release 9.3 of Junos OS.
Description
Specify a direction filter to add predefined attacks to the dynamic group based on the direction specified in the attacks.
Options
values—Name of the direction filter. You can select from the following directions:
- any—Monitors traffic from client to server and server to client.
- client-to-server—Monitors traffic only from client to server (most attacks occur over client-to-server connections).
- exclude-any—Allows traffic from client to server and server to client.
- exclude-client-to-server—Allows traffic only from client to server.
- exclude-server-to-client—Allows traffic only from server-to-client.
- server-to-client—Monitors traffic only from server-to-client.
Usage Guidelines
For configuration instructions and examples, see the Junos OS Security Configuration Guide.
Required Privilege Level
security—To view this statement in the configuration.
security-control—To add this statement to the configuration.
