Juniper IDP 测试license 申请，数据库安装，调用；日志服务器调用IDP日志（juniper networks）

Juniper IDP 测试license 申请，数据库安装，调用；日志服务器调用IDP日志（juniper networks）

License申请：admin@SRX3600> request system license update trial

更新特征库要求配置中已有DNS配置，正确的时间配置，下载的URLsecurity {idp {security-package {url 下载特征库admin@SRX3600> request security idp security-package download2、更新admin@SRX3600> request security idp security-package install

IPS配置方法：

IDP对应的规则：（全局 ）set security idp idp-policy IDP_Default rulebase-ips rule 1 match from-zone anyset security idp idp-policy IDP_Default rulebase-ips rule 1 match source-address anyset security idp idp-policy IDP_Default rulebase-ips rule 1 match to-zone anyset security idp idp-policy IDP_Default rulebase-ips rule 1 match destination-address anyset security idp idp-policy IDP_Default rulebase-ips rule 1 match application defaultset security idp idp-policy IDP_Default rulebase-ips rule 1 match attacks predefined-attack-groups "Critical - IP"set security idp idp-policy IDP_Default rulebase-ips rule 1 match attacks predefined-attack-groups "Critical - TCP"set security idp idp-policy IDP_Default rulebase-ips rule 1 match attacks predefined-attack-groups "Major - TCP"set security idp idp-policy IDP_Default rulebase-ips rule 1 match attacks predefined-attack-groups "Major - IP"set security idp idp-policy IDP_Default rulebase-ips rule 1 then action no-actionset security idp idp-policy IDP_Default rulebase-ips rule 1 then notification log-attacks alertset security idp active-policy IDP_Default

在具体的策略中调用，例如：set security policies from-zone trust to-zone untrust policy t-u-1 match source-address anyset security policies from-zone trust to-zone untrust policy t-u-1 match destination-address anyset security policies from-zone trust to-zone untrust policy t-u-1 then permit application-services idp

日志查看：如果直接在设备中查看IDP log，需要做两步操作：1、security {log {mode event;event-rate 1500;}}日志从data-plane转发到control-plane

2、增加IDP_log文件记录IDP信息set system syslog file IDP_log any anyset system syslog file IDP_log match RT_IDPset system syslog file IDP_log archive size 10mset system syslog file IDP_log archive files 10

版权声明：本文内容由网络用户投稿，版权归原作者所有，本站不拥有其著作权，亦不承担相应法律责任。如果您发现本站中有涉嫌抄袭或描述失实的内容，请联系我们jiasou666@gmail.com 处理，核实后本网站将在24小时内删除侵权内容。