Support Support Downloads Knowledge Base Case Manager My Juniper Community

Knowledge Base

Search our Knowledge Base sites to find answers to your questions.

Ask All Knowledge Base Sites All Knowledge Base Sites JunosE Defect (KA)Knowledge BaseSecurity AdvisoriesTechnical BulletinsTechnotes Sign in to display secure content and recently viewed articles

How to list the attacks detected by IDP on SRX platform

0

0

Article ID: KB15819 KB Last Updated: 08 Dec 2009Version: 1.0
Summary:
This article details procedure to list the detected attacks on SRX platform by IDP
Symptoms:

Solution:
Run the following CLI command on the SRX device to find the list of attacks detected by IDP:

CLI> show security idp attack table

HTTP:URL-ACCESS        5
SQL:DB-ACCESS          6


The left column indicates the attack name and the right column indicates the number of time attack that have been detected.


If there are no attacks listed in the table, run the following command to verify if there is an IDP policy loaded and traffic is going through IDP policy:

CLI> show security idp status




In the above screen shot, "URL-MATCHING" is the IDP policy name that is loaded. The other parameters also indicate if the current packets are going through IDP.

For additional troubleshooting, refer to KB16109.

Comment on this article > Affected Products Browse the Knowledge Base for more articles related to these product categories. Select a category to begin.

Getting Up and Running with Junos

Getting Up and Running with Junos Security Alerts and Vulnerabilities Product Alerts and Software Release Notices Problem Report (PR) Search Tool EOL Notices and Bulletins JTAC User Guide Customer Care User Guide Pathfinder SRX High Availability Configurator SRX VPN Configurator Training Courses and Videos End User Licence Agreement Global Search