Hide Navigation Pane
Show Navigation Pane
Feedback
Download
SHA1
show security idp counters ips
Syntax
Release Information
Command introduced in Release 9.2 of Junos OS.
Description
Display the status of all IPS counter values.
Required Privilege Level
view
Related Topics
clear security idp counters ips
List of Sample Output
show security idp counters ipsOutput Fields
Table 111 lists the output fields for the show security idp counters ips command. Output fields are listed in the approximate order in which they appear.
Table 111: show security idp counters ips Output Fields
Field Name | Field Description |
|---|---|
TCP fast path | Number of TCP packets skipped for IDS processing. |
Layer-4 anomalies | Number of Layer-4 protocol error or anomaly. |
Anomaly hash misses | Number of times look failed on anomaly hash. |
Line context matches | Number of attempts to match line based attacks in traffic stream. |
Stream256 context matches | Number of attempts to match stream based attacks in first 256 bytes of traffic stream. |
Stream context matches | Number of attempts to match stream based attacks in traffic stream. |
Packet context matches | Number of attempts to match packet based attacks in traffic packet. |
Packet header matches | Number of attempts to match packet header based attacks in traffic packet. |
Context matches | Number of attempts to match protocol context based attacks in traffic stream. |
Regular expression matches | Number of attempts to match PCRE expressions in traffic stream. |
Tail DFAs | Number of attempts to match an attack on tail DFA group matches. |
Exempted attacks | Number of attacks exempted from match as per exempt rulebase. |
Out of order chains | Number of times attack is excluded from match due to member attacks in an attack group did not complete chain. |
Partial chain matches | Number of attacks in partial chain match with attack scope as transaction. |
IDS device FIFO size | Number of IDS contexts in virtual IDS device. |
IDS device FIFO overflows | Number of times an IDS context can not be written as the IDS device is full. |
Brute force queue size | Number of entries in the brute force queue. |
IDS cache hits (Unsupported) | Number of sessions those found attack instance in IDS cache. |
IDS cache misses (Unsupported) | Number of sessions those did not find attack instance in IDS cache. |
Shellcode detection invocations | Number of times shell code match is attempted. |
Wrong offsets | Number of times attack's offset is not within the service offset range. |
No peer MAC (Unsupported) | Number of times flow peer MAC address is not available. |
Sample Output
show security idp counters ips
user@host> show
security idp counters ips IDP counters: IDP counter type Value TCP fast path 15 Layer-4 anomalies 0 Anomaly hash misses 3 Line context matches 5 Stream256 context matches 5 Stream context matches 5 Packet context matches 0 Packet header matches 0 Context matches 12 Regular expression matches 0 Tail DFAs 0 Exempted attacks 0 Out of order chains 0 Partial chain matches 0 IDS device FIFO size 0 IDS device FIFO overflows 0 Brute force queue size 0 IDS cache hits 0 IDS cache misses 0 Shellcode detection invocations 0 Wrong offsets 0 No peer MAC 0
