Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
ON THIS PAGE
 

source-prefix-ipv6 (IDS)

Syntax

Hierarchy Level

Description

Specify the prefix length for source IPv6 address aggregation for the IDS rule. This applies session limits to an aggregation of all attacks from within a subnet of the specified length.

For example, if you configure a value of 64 for source-prefix-ipv6, then attacks from 2001:db8:1234:72a2::2 and 2001:db8:1234:72a2::3 are counted as attacks from the 2001:db8:1234:72a2::/64 subnet. However, if a single host on a subnet generates a large number of network probing or flooding attacks, the flows for the entire subnet might be stopped.

Options

prefix-value—Integer value.

  • Range: 1 through 128

Required Privilege Level

interface—To view this statement in the configuration.

interface-control—To add this statement to the configuration.

Release Information

Statement introduced in Junos OS Release 8.5.

Related Documentation