The Juniper Networks intrusion prevention system (IPS) feature detects and prevents attacks in network traffic.
...
Inline-tap Mode: ( copy to a IPS Queue and reset the session if packet need tro be drop, !!! delay and not so secure !!!
Sniffer Mode:
IPS Signature: https://www.juniper.net/documentation/en_US/junos/topics/concept/security-ips-signature-database-understanding.html
It contains definitions of different objects, such as
- attack objects,
- application signature objects, and
- service objects,
that are used in defining IDP policy rules.
The IPS signature database includes more than 5000 signatures and more than 1200 protocol anomalies.
