1. Manuals
  2. Brands
  3. Juniper Manuals
  4. Software
  5. IDP OS 5.1R1 - S REV 1
  6. Release note

Unsupported Features; Known Limitations - Juniper IDP OS 5.1R1 - RELEASE NOTES REV 1 Release Note

Idp series
Hide thumbs
Table of Contents

Advertisement

Juniper Networks Intrusion Detection and Prevention Release Notes
Table 1: New Features (continued)
Feature
Enhanced debugging and
troubleshooting tools

Unsupported Features

Known Limitations

4
Description
You can use the following CLI command enhancements to display system information:
scio app cache
—A new option,
cache. Previously, only the most recent 32 were listed.
scio logview
—A new command that enables you to troubleshoot log collection by NSM. The
command allows you to view raw log data on the IDP Series device so you can compare it to
the logs seen at NSM.
scio subs
—A new option displays aggregate statistics for all IDP engines on IDP8200. IDP8200
has multiple IDP engines. To view an aggregation, use
statistics per engine, use
scio var
—The TCP and UDP flow tables now include a column for application.
The following features are not supported in IDP OS Release 5.1:
SSL decryption using IDEA-based algorithms or ciphers. Also not supported in IDP OS
Release 5.0.x.
On IDP8200, 10 gigabyte fiber interfaces do not support interface signaling or peer
port modulation. Also not supported in IDP OS Release 5.0.x.
Authentication to the ACM via RADIUS with RSA SecurID (authentication via RADIUS
server is supported). Same as IDP OS Release 5.0.x.
Note that IDP75 does not have an HA interface. We do not support an HA deployment
with IDP75 devices. Also, IDP75 has only one pair of traffic interfaces. We do not support
a mixed mode deployment with IDP75 devices.
For single core platforms (IDP75, IDP200, IDP600), we recommend you disable
application volume tracking (AVT). The AVT feature is fully functional, but the AVT
process is CPU intensive. During stress testing, high CPU usage by the AVT feature resulted
in link flapping.
Note that if you disable AVT, IDP Reporter application volume reports are empty.
To disable AVT:
From NSM Device Manager, double-click a device and then click Profiler Settings.
1.
Click the General tab.
2.
Deselect Enable AVT.
3.
Click Apply.
4.
From NSM Device Manager, right-click the device and select Update Device to push
5.
your configuration change to the device.
listall
, allows you to list the entire application identification
scio subs aggregatestatus s0
.
scio subs status s0
. To view
Copyright © 2011, Juniper Networks, Inc.

Advertisement

Table of Contents
loading

Related Manuals for Juniper IDP OS 5.1R1 - RELEASE NOTES REV 1

Related Content for Juniper IDP OS 5.1R1 - RELEASE NOTES REV 1

This manual is also suitable for:

Idp os 5.1r1

Table of Contents