Table of Contents
Advertisement
Table 51: IDP Device Configuration: Protocol Thresholds and Configuration Settings (continued)
Setting
Description
FTP
Maximum Line length–Raises a protocol anomaly if IDP detects an FTP username containing more bytes
than the specified maximum. The default is 32 bytes.
Maximum Username length–Raises a protocol anomaly if IDP detects an FTP password containing more
bytes than the specified maximum. The default is 64 bytes.
Maximum Password length –Raises a protocol anomaly if IDP detects an FTP pathname containing more
bytes than the specified maximum. The default is 512 bytes.
Maximum Pathname length –Raises a protocol anomaly if IDP detects an FTP pathname containing more
bytes than the specified maximum. The default is 512 bytes.
Maximum Sitestring length –Raises a protocol anomaly if IDP detects an FTP sitestring containing more
bytes than the specified maximum. The default is 512 bytes.
Maximum number of login failures per-minute–Raises a protocol anomaly if IDP detects more FTP login
failures in one minute than the specified maximum. The default is 4 FTP login failures per minute.
GNUTELLA
Maximum TTL hops–Raises a protocol anomaly if IDP detects a number of TTL hops that is higher than the
specified maximum. The default is 8 TTL hopes.
Maximum Line length–Raises a protocol anomaly if IDP detects, in a Gnutella connection, a line that contains
more bytes than the specified maximum. The default is 2048 bytes.
Maximum Query size–Raises a protocol anomaly if IDP detects a Gnutella client query that contains more
bytes than the specified maximum. The default is 256 bytes.
GOPHER
Maximum line length–Raises a protocol anomaly if IDP detects, in a Gopher server-to-client connection, a
line sent by a Gopher server to a client that contains more bytes than the specified maximum. The default is
512 bytes.
Maximum hostname length–Raises a protocol anomaly if IDP detects, in a Gopher server-to- client connection,
a hostname that contains more bytes than the specified maximum. The default is 64 bytes.
Copyright © 2010, Juniper Networks, Inc.
Chapter 8: Configuring Intrusion Detection and Prevention Device Settings
97
Advertisement
Table of Contents
Troubleshooting
Related Manuals for Juniper NETWORK AND SECURITY MANAGER 2010.3 - CONFIGURING INTRUSION DETECTION AND PREVENTION GUIDE REV1
Related Products for Juniper NETWORK AND SECURITY MANAGER 2010.3 - CONFIGURING INTRUSION DETECTION AND PREVENTION GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - CONFIGURING INTRUSION DETECTION PREVENTION DEVICES GUIDE REV 01
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - API GUIDE REV 1
- Juniper NETWORK AND SECURITY MANAGER 2010.3 - M-SERIES AND MX-SERIES DEVICES GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.2 - ADMINISTRATION GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.3 - ADMINISTRATION GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - CONFIGURING J SERIES SERVICES ROUTERS AND SRX SERIES SERVICES GATEWAYS GUIDE REV
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - ADMININISTRATION GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - NSMXPRESS SERIES II REV 1
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - M-SERIES AND MX-SERIES DEVICES GUIDE REV 1
- Juniper NETWORK AND SECURITY MANAGER 2010.2
- Juniper MEDIA FLOW MANAGER 2.0.2 - ADMINISTRATOR S GUIDE AND CLI
- Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 - CATEGORY OFFENSE INVESTIGATION GUIDE REV 1
- Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 R2 - LOG MANAGEMENT ADMINISTRATION GUIDE REV 1
- Juniper MEDIA FLOW CONTROLLER 2.0.5
- Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 - SNMP AGENT GUIDE REV 1