Example: Verifying JUNOS Software Application Identification Extracted Application Package

Juniper Networks regularly updates the predefined application identification application package database and makes it available on the Juniper Networks website, so it is important that you have the most recent version.

When you download the application package from the IDP signature database, you will see a status message after you enter the download command. Example, on successful download, you will see the following message (where xxxx is the package version number):

application package xxxx is downloaded successfully

The syslog will also show the result of the download.

To view the contents of the application package that is inserted into the configuration after successful download:

show services application identification

The output that follows shows the first entry in the application package database, which is the predefined AIM application:

application junos:AIM {
    type AIM;
    index 61;
    port-mapping {
        port-range {
            tcp 5190;
        }
    }
    signature {
        port-range {
            tcp 0-65535;
        }
        client-to-server {
            dfa-pattern "(\*\01[^\07]*\00.*|CONNECT login\.oscar\.aol\.com).*";
        }
        server-to-client {
            dfa-pattern "(\*\01|HTTP/1\.[01] 200 Connection established\x0d 0a 0d 0a\x).*";
        }
        min-data 10;
        order 9;
    }
}

To check the version of the current application package from configuration mode (the version information will be the first line item):

show services application-identification

To check the version from operational mode:

show services application-identification version

You will see the following output if package version 1608 is installed successfully:

Application package version: 1608

Example: Verifying JUNOS Software Application Identification Extracted Application Package

Related Topics