show services screen ids-option
Syntax
show services screen ids-option <ids-rules> screen-name
Description
Display
the configuration information about the specified services screen.
You can configure a ids-option to enable screen protection
on the MX Series devices.
Required Privilege Level
view
Output Fields
Table 1 lists the output fields for the show services screen
ids-option command. Output fields are listed in the approximate order
in which they appear.
|
Field Name |
Field Description |
|---|---|
|
|
Number of IP block fragments. |
|
|
The maximum number of concurrent sessions that can be initiated from a single source IP address. |
|
|
The maximum number of concurrent sessions that can be directed to a single destination IP address. |
|
|
Number of packets per second that can be initiated from a single source IP address. |
|
|
Number of packets per second that can be directed to a single destination IP address. |
|
|
Number of concurrent sessions per second that can be initiated from a single source IP address. |
|
|
Number of concurrent sessions per second that can be directed to a single destination IP address. |
|
|
Allowlist of IP addresses. Specifies the list of IP addresses for a given category that are to be bypassed for scanning. |
|
|
Number of allowed concurrent sessions that a device can initiate from a single source IP address. |
|
|
Number of allowed concurrent sessions that can be directed to the same destination IP address. |
Sample Output
show services screen ids-option
user@host> show services screen ids-option <ids-rules> Screen object status: Name value IP block fragment enabled Limit session source max sessions 1 Limit session source packet rate 1 Limit session source session rate 1 Limit session source number of whitelists 2 whitelist3 whitelist1 Limit session source tcp max sessions 455 Limit session source tcp packet rate 5 Limit session source tcp session rate 99 Limit session source tcp syn cookies mss 65 Limit session source tcp syn cookies threshold rate 1 Limit session source tcp syn cookies threshold sessions 1 Limit session source number of tcp whitelists 2 whitelist2 whitelist1 Limit session source udp max sessions 444 Limit session source udp packet rate 33 Limit session source udp session rate 77 Limit session source number of udp whitelists 2 whitelist1 whitelist2 Limit session source icmp max sessions 2 Limit session source icmp packet rate 2 Limit session source icmp session rate 3 Limit session source number of icmp whitelists 2 whitelist3 whitelist1 Limit session destination max sessions 1 Limit session destination packet rate 1 Limit session destination session rate 1250 Limit session destination number of whitelists 2 whitelist2 whitelist1 Limit session destination tcp max sessions 455 Limit session destination tcp packet rate 5 Limit session destination tcp session rate 99 Limit session destination tcp syn cookies mss 65 Limit session destination tcp syn cookies threshold rate 1 Limit session destination tcp syn cookies threshold sessions 1 Limit session destination number of tcp whitelists 2 whitelist2 whitelist1 Limit session destination udp max sessions 444 Limit session destination udp packet rate 33 Limit session destination udp session rate 77 Limit session destination number of udp whitelists 2 whitelist1 whitelist2 Limit session destination icmp max sessions 2 Limit session destination icmp packet rate 2 Limit session destination icmp session rate 3 Limit session destination number of icmp whitelists 2 whitelist3 whitelist1
Release Information
Support added in Junos OS Release 19.3R2 for Next Gen Services on MX Series routers MX240, MX480 and MX960 with the MX-SPC3 services card.