■ Use the no version to restore the defaults for the protocol.
■ See suspicious-control-flow-detection protocol threshold.
Monitoring Suspicious Control Flow
Use the commands described in this section to monitor suspicious control flows.
show suspicious-control-flow-detection counts
■ Use to display statistics for suspicious control flow detection. When a slot is
specified, displays only information for the specific slot. If no slot is specified,
displays information for all slots.
■ The delta keyword displays statistics for the current baseline.
■ Field descriptions
■ Number of suspicious flows total—Total number of suspicious flows, current
and past
■ Number of suspicious flows current—Number of suspicious flows currently
detected and monitored
■ Number of groups total—Total number of groups, current and past
■ Number of groups current—Number of groups currently detected and
monitored
■ Number of false negatives total—Total number of flows monitored that have
not become suspicious (exceeded their threshold)
■ Number of false negatives current—Current number of flows monitored that
have not become suspicious (exceeded their threshold)
■ Number of table overflows—Number of times a flow table overflows
■ Example
host1(config)#show suspicious-control-flow-detection counts
Suspicious Flow Detection System Counts
Number of suspicious flows total: 0
Number of suspicious flows current: 0
Number of groups total: 0
Number of groups current: 0
Number of false negatives total: 0
Number of false negatives current: 0
Number of table overflows: 0
■ See show suspicious-control-flow-detection counts.
show suspicious-control-flow-detection flows
■ Use to display suspicious flows.
■ Field descriptions
456 ■ Denial of Service (DoS) Protection
JUNOSe 11.1.x System Basics Configuration Guide
To Next Page
Loading...