Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 7 Next »

Configuration:   AJSEC Lab7 IPS Rulebase


The Juniper Networks intrusion prevention system (IPS) feature detects and prevents attacks in network traffic.

based on signature,

Using Deep packet inspection 


Mode:

Integrated Mode:

Inline-tap Mode: ( copy to a IPS Queue and reset the session if packet need tro be drop, !!! delay and not so secure !!! 

Sniffer Mode: 


IPS Signature:    https://www.juniper.net/documentation/en_US/junos/topics/concept/security-ips-signature-database-understanding.html

It contains definitions of different objects, such as

  • service contexts objects,
  • attack objects,
  • application signature objects,

that are used in defining IDP policy rules.

The IPS signature database includes more than 5000 signatures and more than 1200 protocol anomalies.




  • No labels