Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
 

Intrusion Detection and Prevention

  • Support for on-box IDP Control Plane Packet Capture (SRX380, SRX300, SRX320, SRX340, SRX345, SRX1500, SRX4100, SRX4200, SRX4600, SRX550HM, SRX5400, SRX5600, SRX5800, vSRX 2.0, vSRX 3.0)—Starting in Junos OS Release 23.1R1, you can store the packets captured by intrusion detection and prevention (IDP) locally on the SRX device. You can view the details on the UI or J-Web. The captured traffic is stored on the device at /var/log/pcap/idp/.You can limit the number of local packet capture files that are created using a configuration and the log rotation facility.

    To support this new feature, we've:

    • Added new counters to the existing packet-log counters.

    • Provided a command to clear all the captured files.

    [See https://www.juniper.net/documentation/us/en/software/junos/idp-policy/topics/topic-map/security-idp-packet-capture.html