idp-policy (Application Services)
Syntax
idp-policy idp-policy;
Hierarchy Level
[edit security policies from-zone zone-name to-zone zone-name policy policy-name then permit application-services]
Description
Specify IDP policy name.
When you configure a unified policy with a dynamic application as one of the matching condition, the configuration eliminates the additional steps involved in IDP policy configuration. IDP policy configurations are simplified within a unified policy. Configuring source or destination address, source and destination-except, from and to zone, or application is not required with unified policy, as the match happens in the security policy itself.
Required Privilege Level
security—To view this statement in the configuration.
security-control—To add this statement to the configuration.
Release Information
Statement introduced in Junos OS Release 18.2R1
Starting in Junos OS Release 18.2R1, IDP policy is available within unified security policy.
Unified policies are supported on SRX Series Firewalls, allowing granular control and enforcement of Dynamic Layer Applications within the traditional Security Policy. Layer 7 dynamic applications are integrated with security policy match criteria and IDP policy supports Layer 7 application based security policies.