show security idp policy-commit-status
Syntax
show security idp policy-commit-status <logical-system (logical-system-name | all)> <tenant tenant-name>
Description
Displays the IDP policy commit status. For example, status of policy compilation or load.
Options
| none | Displays the IDP policy commit status. |
| logical-system logical-system-name | (Optional) Displays the IDP policy commit status for a specific logical system. |
| logical-system all | (Optional) Displays the IDP policy commit status for all logical systems. |
| tenant tenant-name | (Optional) Displays the IDP policy commit status for a specific tenant system. |
Required Privilege Level
view
Output Fields
Sample Output
show security idp policy-commit-status
user@host> show security idp policy-commit-status IDP policy[/var/db/idpd/bins/test.bin.gz.v] and detector[/var/db/idpd/sec-repository/installed-detector/libidp-detector.so.tgz.v] loaded successfully. The loaded policy size is:45583070 Bytes
Sample Output
show security idp policy-commit-status (on vSRX Virtual Firewall when you configure dynamic attack groups filters)
user@host> show security idp policy-commit-status Last good policy file does not exist. Aborted
Sample Output
show security idp policy-commit-status logical-system LSYS1
user@host> show security idp policy-commit-status logical-system LSYS1 IDP policy[/var/db/idpd/bins//idp-policy-combined.bin.gz.v] and detector[/var/db/idpd/sec-repository/installed-detector/libidp-detector.so.tgz.v] loaded successfully. The loaded policy size is:7416 Bytes
Release Information
Command introduced in JUNOS OS Release 10.4.
Starting with Junos OS Release 12.3X48-D15 and Junos OS Release 17.3R1, a new pattern matching engine is introduced for the SRX Series IDP feature. This scanning mechanism helps improve performance and policy loading. The new engine is 9.223 times faster than the existing DFA engine.
logical-system option introduced in Junos OS Release 18.3R1.
tenant option introduced in Junos OS Release 19.2R1.