Support Support Downloads Knowledge Base Case Manager My Juniper Community

Knowledge Base

Search our Knowledge Base sites to find answers to your questions.

Ask All Knowledge Base Sites All Knowledge Base Sites JunosE Defect (KA)Knowledge BaseSecurity AdvisoriesTechnical BulletinsTechnotes Sign in to display secure content and recently viewed articles

[SRX] How to determine the detector version and update it to the latest version

0

0

Article ID: KB16779 KB Last Updated: 19 Oct 2020Version: 2.0
Summary:
In addition to updating the JUNOS software, IDP Detector has to be updated as well. This article describes how to determine the IDP detector version currently installed on the device and install the latest detector.
Solution:

The IDP detector engine is a dynamic protocol decoder that includes support for decoding more than 60 protocols and more than 500 service contexts. The IDP detector engine is used by the IDP process engine in packet analysis.

The detector engine code base is packaged and released separately from the Junos code bases. Juniper Networks Security Center (J-Security Center) releases IDP detector engine updates more frequently in order to ensure IDP products protect your network against recently discovered vulnerabilities.

To display the IDP detector engine version number on a Junos device, perform the following:
  1. Log into the Junos device via the CLI and enter operational mode.

  2. Enter the following command:

root@srx> show security idp security-package-version

  Attack database version:3291(Thu Jun 18 13:44:19 2020 UTC)
  Detector version :12.6.160200109
  Policy template version :3291

In this example, the detector version installed in the device is 10.2.140090831. To update a Junos device using the CL, perform the following:

  1. Download the security package. The security package includes the detector and the latest attack objects and groups.
    user@host> request security idp security-package download full-update

  2. Update the attack database, the active policy, and the detector with the new package using the following command:
    user@host> request security idp security-package install

  3. Check the attack database update status with the following command. The command output displays information about the downloaded and installed versions of attack database versions.
    user@host> request security idp security-package install status

Modification History:
2020-10-04: Updated the outputs with latest one.

Related Links

Comment on this article > Affected Products Browse the Knowledge Base for more articles related to these product categories. Select a category to begin.

Getting Up and Running with Junos

Getting Up and Running with Junos Security Alerts and Vulnerabilities Product Alerts and Software Release Notices Problem Report (PR) Search Tool EOL Notices and Bulletins JTAC User Guide Customer Care User Guide Pathfinder SRX High Availability Configurator SRX VPN Configurator Training Courses and Videos End User Licence Agreement Global Search