dynamic-attack-group

Syntax

dynamic-attack-group dynamic-attack-group-name { filters { category { values [list-of-values]; } direction { values [any | client-to-server | exclude-any | exclude-client-to-server | exclude-server-to-client | server-to-client]; } false-positives { values [frequently | occasionally | rarely | unknown]; } performance { values [fast | normal | slow | unknown]; } products { values [list-of-values]; } recommended; service { values [list-of-values]; } severity { values [critical | info | major | minor | warning]; } type { values [anomaly | signature]; }}}

Hierarchy Level

[edit security idp]

Release Information

Statement introduced in Release 9.3 of Junos OS.

Description

Configure dynamic attack group. Dynamic attack groups select its members based on the filters specified in the group. Hence the list of attacks get updated (added or removed) when a new signature database is used.

Options

dynamic-attack-group-name —Name of the dynamic attack group.

The remaining statements are explained separately.

Usage Guidelines

For configuration instructions and examples, see the Junos OS Security Configuration Guide.

Required Privilege Level

security—To view this statement in the configuration.

security-control—To add this statement to the configuration.

Copyright© 1999-2010 Juniper Networks, Inc. All rights reserved.