Which configuration statement would allow the SRX Series device to match a signature only on the first match, and not subsequent signature matches in a connection?

Which configuration statement would allow the SRX Series device to match a signature only
on the first match, and not subsequent signature matches in a connection?

Which configuration statement would allow the SRX Series device to match a signature only
on the first match, and not subsequent signature matches in a connection?

A.
user@host# set security idp idp-policy test rulebase-ips rule 1 then action recommended

B.
user@host# set security idp idp-policy test rulebase-ips rule 1 then action
ignore-connection

C.
user@host# set security idp idp-policy test rulebase-ips rule 1 then action no-action

D.
user@host# set security idp idp-policy test rulebase-ips rule 1 then action
drop-connection

Show Hint

Leave a Reply 1

Your email address will not be published. Required fields are marked *

kees

kees

Ignore Connection
Stops scanning traffic for the rest of the connection if an attack match is found. IDP disables the rulebase for the specific connection.
Note: This action does not mean ignore an attack.

Reply