Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?


packet-log (Security IDP Sensor Configuration)


Syntax (Logical Systems and Tenant Systems)

Hierarchy Level


Configure the sensor for packet capture. This configuration defines the amount of memory to be allocated for packet capture and the maximum number of sessions that can generate packet capture data for the device at one time. The configuration also identifies the source address and host address for transmission of the completed packet capture object.


  • ssl-profile-name profile-name —SSL initiation profile name to be used for encrypted packet log transmission.

    Starting in Junos OS Release 22.1R1, you can enable a secure SSL connection and send encrypted IDP packet capture log to the packet capture receiver. To establish the SSL connection, you must specify the SSL initiation profile that you want to use in the IDP packet log configuration.

    The SSL profile name must be configured in the SSL initiation profile configuration. SSL initiation profile configuration performs the required SSL certificates and SSL handshake operations to establish a secure connection. SSL versions are chosen based on the SSL initiation configuration. Also, SSL profile needs to be configured in each logical system separately.

    If SSL profile name is not configured in SSL initiation profile configuration, then the following message is displayed Referenced SSL initiation profile is not defined.

The remaining statements are explained separately. See CLI Explorer.

Required Privilege Level

security—To view this statement in the configuration.

security-control—To add this statement to the configuration.

Release Information

Statement introduced in Junos OS Release 10.2.