Support Support Downloads Knowledge Base Juniper Support Portal Community

Knowledge Base

Search our Knowledge Base sites to find answers to your questions.

Ask All Knowledge Base Sites All Knowledge Base Sites JunosE Defect (KA)Knowledge BaseSecurity AdvisoriesTechnical BulletinsTechnotes Sign in to display secure content and recently viewed articles

[SRX IDP] Not seeing any attacks members in predefined-attack-groups



Article ID: KB27089 KB Last Updated: 04 Mar 2017Version: 2.0
This article gives explanation of why don’t you see any attack object/attacks in some of the predefined attack groups.
Attack object/attacks are not displayed in some of the predefined attack groups.
The following screenshot for NSM which shows "VOIP - Critical" predefined group which shows no attack member.



Some of the attack groups do not have any group members; they are made for future use. In the future, when predefined attacks are defined in their respective categories, these attack groups will be updated to the device.

This applies to all the devices with the IDP feature such as Standalone IDP, ISG-IDP and SRX-IDP.

Groups such as "Critical - VOIP” and “Critical - ICMP” do not have any members as of now.

If you want to check the policy/components of that particular attack group from the CLI


[root@defaulthost ~]# less /usr/idp/device/state/s0/policy.set


root% less /var/db/idpd/sets/<policy-name>.set


There is not an equivalent CLI command.  Use the NSM GUI.

Comment on this article > Affected Products Browse the Knowledge Base for more articles related to these product categories. Select a category to begin.

Getting Up and Running with Junos

Getting Up and Running with Junos Security Alerts and Vulnerabilities Product Alerts and Software Release Notices Problem Report (PR) Search Tool EOL Notices and Bulletins JTAC User Guide Customer Care User Guide Pathfinder SRX High Availability Configurator SRX VPN Configurator Training Courses and Videos End User Licence Agreement Global Search