attack-type (Security Chain)
Syntax
attack-type {
chain {
expression boolean-expression;
member (Security IDP) member-name {
attack-type {
(anomaly ...same statements as in [edit security idp custom-attack attack-name attack-type anomaly] hierarchy level | signature ...same statements as in [edit security idp custom-attack attack-name attack-type signature] hierarchy level);
}
}
order;
protocol-binding {
application application-name;
icmp;
icmpv6;
ip (Security IDP Custom Attack) {
protocol-number transport-layer-protocol-number;
}
ipv6 {
protocol-number transport-layer-protocol-number;
}
rpc {
program-number rpc-program-number;
}
tcp (Security IDP Protocol Binding) {
minimum-port port-number <maximum-port port-number>;
}
udp (Security IDP Protocol Binding) {
minimum-port port-number <maximum-port port-number>;
}
}
reset;
scope (session | transaction);
}
}
Hierarchy Level
[edit security idp custom-attack attack-name]
Description
Specify the type of attack.
Note:
In a chain attack, you can configure multiple member attacks.
In an attack, under protocol binding TCP/UDP, you can specify multiple ranges of ports.
Options
The remaining statements are explained separately. See CLI Explorer.
Required Privilege Level
security—To view this statement in the configuration.
security-control—To add this statement to the configuration.
Release Information
Statement introduced in Junos OS Release 9.3.