Intrusion Prevention

 View Only
last person joined: 11 days ago 

Ask questions and share experiences on intrusion detection and prevention (IDP).

Welcome!

If you have a question or a use case, likely there are others who are experiencing or worked through the same thing. Don't hesitate to jump in and ask or share your knowledge!

Need additional guidance?  Check out these Juniper Resources.

Knowledge Base Security Advisories Technical Bulletins

Latest Discussion Posts

  • That will be the term for the device making an request to an NTP server. The term for the device itself responding to NTP requests will use destination port instead of source port. The allow would only be needed if other network devices use this one ...

  • HI. I can't be apply in one interface witch multiple firewalls, there needs to be configuration change? Thanks You ------------------------------ DENDHY GALIH ------------------------------

  • Hi Spuluka. I Want to ask first, is the configuration correct or not? Any other solution? ------------------------------ DENDHY GALIH ------------------------------

  • Profile Picture

    RE: CVE-2013-5211

    By default Junos routing engine (RE) will act as a ntp server and accept all traffic. To prevent this you need to apply a firewall filter to the loopback or management address of the device. A sample protect RE filter can be found here for comprehensive ...

  • By default Junos routing engine (RE) will act as a ntp server and accept all traffic. To prevent this you need to apply a firewall filter to the loopback or management address of the device. A sample protect RE filter can be found here for comprehensive ...

  • Hi. I want to ask about CVE-2013-5211 - description : The remote NTP server responds to mode 6 queries. Devices that respond to these queries have the potential to be used in NTP amplification attacks. An unauthenticated, remote attacker could potentially ...

  • Profile Picture

    CVE-2013-5211

    Hi. I want to ask about recommendation for CVE-2013-5211 - description : The remote NTP server responds to mode 6 queries. Devices that respond to these queries have the potential to be used in NTP amplification attacks. An unauthenticated, remote ...

Unanswered Posts

Top Contributors in the Community