Juniper NETWORK AND SECURITY MANAGER 2010.3 - CONFIGURING INTRUSION DETECTION AND PREVENTION GUIDE REV1 Manual page 76

Configuring Intrusion Detection and Prevention Devices Guide
Related Topics
60
IDP does not limit the rate of sessions that do not match APE rules. Rate limiting is
done by service based till application is identified in the session i.e. default services
running on the port.
When the application identification feature fails to identify the application, IDP does
not try to match the rule but instead applies the default rate limit (if any). You can
modify this so that in cases where application identification fails, IDP attempts to
match the session to the standard protocol and port for the application.
For more information, see the IDP Concepts & Examples guide.
Intrusion Detection and Prevention Devices and Security Policies Overview on page 31
Modifying IDP Rulebase Rules (NSM Procedure) on page 36
Copyright © 2010, Juniper Networks, Inc.