[ Contents] [ Prev] [ Next] [ Index] [ Report an Error]

rulebase-exempt

Syntax

rulebase-exempt {
rule rule-name {
description text ;
match {
attacks {
custom-attacks [ attack-name ];
predefined-attack-groups [ attack-name ];
predefined-attacks [ attack-name ];
}
destination-address [ address-name ];
destination-except [ address-name ];
from-zone zone-name ;
source-address [ address-name ];
source-except [ address-name ];
to-zone zone-name ;
}
}
}

Hierarchy Level

[edit security idp idp-policy policy-name ]

Release Information

Statement introduced in Release 9.2 of JUNOS software.

Description

Configure the exempt rulebase to skip detection of a set of attacks in certain traffic.

Note: You must configure the IPS rulebase before configuring the exempt rulebase.

This statement is supported on SRX-series devices.

Options

The remaining statements are explained separately.

Usage Guidelines

For configuration instructions and examples, see the JUNOS Software Security Configuration Guide.

Required Privilege Level

security—To view this statement in the configuration.

security-control—To add this statement to the configuration.

[ Contents] [ Prev] [ Next] [ Index] [ Report an Error]

[an error occurred while processing this directive]