Table 15: Idp Rulebase Data Elements - Juniper NETWORK AND SECURITY MANAGER 2010.4 - API GUIDE REV 1 Manual

Table 15: IDP Rulebase Data Elements

Data Element
name_
rules_collection
rowcountperrule_collection
next_preferred_id
ruleno
comments
customOptions_collection
enabled
preferred-id
rb-link
src_zone_collection
src_addr_collection
src_addr_negate
dst_zone_collection
dst_addr_collection
dst_addr_negate
service
terminal
Copyright © 2010, Juniper Networks, Inc.
Description
Name of the IDP collection.
Collection of all sets of rules.
Row count per rule in the collection.
Next preferred ID.
Rule number.
Comments about the IDP collection.
Custom options.
Collection enabled.
A rule ID is a number that uniquely identifies a rule within the rulebase and security policy. After
you install a rule as part of a security policy on a security device, you can view the rule by logging
in locally to the device. However, when you view it through the Web UI or CLI, the rule appears
as an individual policy. The individual policy on the device has the same ID as the rule in the
management system, enabling you to determine which rules are on specific devices.
Rule group name.
The source sends traffic from this zone.
Address of the traffic source.
Negates the specified source address.
The source sends traffic to this zone.
Destination address for the traffic.
Negates the specified destination address.
Application layer protocols that are supported by the destination IP address.
Makes a rule terminal. Traffic matching the source, destination, and service of a terminal rule is
not compared to subsequent rules even if the traffic does not match an attack object in the
terminal rule.
Chapter 5: Security Data Model
41