I'm curious what other people are doing for IDP logging from SRX devices. I have Junipers STRM and NSM. I've been able to get some information from STRM but only by writing a very backwards query (lots of "NOT equal to"). I can't seem to find any high or low level categories that include all of the possible IDP filters/signatures.
I'm open to any and all suggestions for event queries relating to IDP on the SRX series.
