application–identification

Syntax

application-identification {application application-name {disable;index;signature {client-to-server {dfa-pattern pattern;regex;}disable;min-data bytes;order;port-range {tcp <TCP-port-range>;udp <UDP-port-range>;}server-to-client {dfa-pattern pattern;regex;}}type name;}application-system-cache-timeout value;download {automatic {interval hours;start-time MM-DD.hh:mm;}url url;}max-checked-bytes bytes;max-sessions value;nested-application name {index;protocol;signature name {chain-order;maximum-transactions;member name {context [http-header-content-type | http-header-host | http-url-parsed | http-url-parsed-param-parsed];direction [any | client-to-server | server-to-client];pattern dfa-pattern;}order value;}type name;}nested-application-settings {no-application-system-cache;no-nested-application;}no-application-identification;no-application-system-cache;traceoptions {file filename <files number> <match regular-expression><size maximum-file-size> <world-readable | no-world-readable>flag all;no-remote-trace;}}

Hierarchy Level

[edit services]

Release Information

Statement introduced in Release 10.2 of Junos OS.

Description

Configure application identification options to identify the TCP/UDP application session running on nonstandard ports to match the application properties of transiting network traffic.

Options

The remaining statements are explained separately.

Usage Guidelines

For configuration instructions and examples, see the Junos OS Security Configuration Guide.

Required Privilege Level

security—To view this statement in the configuration.

security-control—To add this statement to the configuration.