Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
 

show security idp counters packet

Syntax

Description

Displays the status of all IDP packet counter values.

Options

none

Displays the status of all IDP packet counter values.

logical-system logical-system-name

(Optional) Displays the status of all IDP packet counter values for a specific logical system.

logical-system all

(Optional) Displays the status of all IDP packet counter values for all logical systems.

tenant tenant-name

(Optional) Displays the status of all IDP packet counter values for a specific tenant system.

Required Privilege Level

view

Output Fields

Table 1 lists the output fields for the show security idp counters packet command. Output fields are listed in the approximate order in which they appear.

Table 1: show security idp counters packet Output Fields

Field Name

Field Description

Processed packets

Number of packets processed by the IDP service.

Dropped packets

Number of packets dropped by the IDP service.

The counter for all dropped packets.

Dropped by IDP policy

Number of packets dropped by the IDP policy.

The counter for dropped packets due to the action specified in the IDP policy (starting with the attack detection).

Dropped by Error

Number of packets dropped by error.

The difference between Dropped packets and Dropped by IDP policy. IDS drops are primarily due to policy actions.

Reassembly errors lead to packet drops.

So all drops shown in show security idp counters ips, show security idp counters flow and show security idp counters tcp-reassembler add to Dropped by Error. All drops includes reassembly errors, anomalies similar to bad ip header and TTL errors.

Dropped sessions

(Unsupported)

Number of sessions dropped.

Bad IP headers

Number of packets that fail IP header length validity check.

Packets with IP options

Number of packets that contain the optional header fields.

Decapsulated packets

Number of packets that are decapsulated.

GRE decapsulations

(Unsupported)

Number of packets that are generic routing encapsulation (GRE) decapsulated.

PPP decapsulations

(Unsupported)

Number of packets that are Point-to-Point Protocol (PPP) decapsulated.

TCP decompression uncompressed IP

(Unsupported)

Number of uncompressed IP headers that are to be TCP decompressed.

TCP decompression compressed IP

(Unsupported)

Number of compressed IP headers that are to be TCP decompressed.

Deferred-send packets

(Unsupported)

Number of deferred IP packets that are sent out.

IP-in-IP packets

(Unsupported)

Number of packets that are IP-in-IP encapsulated.

TTL errors

(Unsupported)

Number of packets with TTL error in the header.

Routing loops

(Unsupported)

Number of packets that continue to be routed in an endless circle due to an inconsistent routing state.

No-route packets

(Unsupported)

Number of packets that could not be routed further.

Flood IP

(Unsupported)

Number of packets that are identified as IP flood packets.

Invalid ethernet headers

(Unsupported)

Number of packets that are identified with an invalid Ethernet header.

Packets attached

Number of packets attached.

Packets cloned

Number of packets that are cloned.

Packets allocated

Number of packets allocated.

Packets destructed

Number of packets destructed.

Sample Output

show security idp counters packet

show security idp counters packet logical-system LSYS1

show security idp counters packet tenant TSYS1

Release Information

Command introduced in Junos OS Release 9.2.

The fields Dropped by IDP policy and Dropped by Error added in Junos OS Release 10.1.

logical-system option introduced in Junos OS Release 18.3R1.

tenant option introduced in Junos OS Release 19.2R1.