attack-type (Security Chain)
Syntax
attack-type { chain { expression boolean-expression; member (Security IDP) member-name { attack-type { (anomaly ...same statements as in [edit security idp custom-attack attack-name attack-type anomaly] hierarchy level | signature ...same statements as in [edit security idp custom-attack attack-name attack-type signature] hierarchy level); } } order; protocol-binding { application application-name; icmp; icmpv6; ip (Security IDP Custom Attack) { protocol-number transport-layer-protocol-number; } ipv6 { protocol-number transport-layer-protocol-number; } rpc { program-number rpc-program-number; } tcp (Security IDP Protocol Binding) { minimum-port port-number <maximum-port port-number>; } udp (Security IDP Protocol Binding) { minimum-port port-number <maximum-port port-number>; } } reset; scope (session | transaction); } }
Hierarchy Level
[edit security idp custom-attack attack-name]
Description
Specify the type of attack.
Note:
In a chain attack, you can configure multiple member attacks.
In an attack, under protocol binding TCP/UDP, you can specify multiple ranges of ports.
Options
The remaining statements are explained separately. See CLI Explorer.
Required Privilege Level
security—To view this statement in the configuration.
security-control—To add this statement to the configuration.
Release Information
Statement introduced in Junos OS Release 9.3.