Juniper NETWORK AND SECURITY MANAGER 2010.4 - CONFIGURING INTRUSION DETECTION PREVENTION DEVICES GUIDE REV 01 Manual page 77

Chapter 4: Configuring Security Policies
IDP does not limit the rate of sessions that do not match APE rules. Rate limiting is
done by service based till application is identified in the session i.e. default services
running on the port.
When the application identification feature fails to identify the application, IDP does
not try to match the rule but instead applies the default rate limit (if any). You can
modify this so that in cases where application identification fails, IDP attempts to
match the session to the standard protocol and port for the application.
For more information, see the IDP Concepts & Examples guide.
Related Intrusion Detection and Prevention Devices and Security Policies Overview on page 31
Documentation
Modifying IDP Rulebase Rules (NSM Procedure) on page 36
Copyright © 2010, Juniper Networks, Inc. 61