Support Support Downloads Knowledge Base Case Manager My Juniper Community

Knowledge Base

Search our Knowledge Base sites to find answers to your questions.

Ask All Knowledge Base Sites All Knowledge Base Sites JunosE Defect (KA)Knowledge BaseSecurity AdvisoriesTechnical BulletinsTechnotes Sign in to display secure content and recently viewed articles

[SRX/J-series] Default status of ALGs

0

0

Article ID: KB25546 KB Last Updated: 29 Oct 2012Version: 2.0
Summary:
This article provides information about the default status of ALGs on SRX devices.
Symptoms:
  • Information about the default status of ALGs on SRX devices.

  • By default, which ALG's are enabled?
Cause:

Solution:
The default statuses of ALGs on SRX devices are as follows:

Note:This command is tested on the recommended Junos version.
  • On Branch SRX and J-Series devices (by default, only IKE-ESP is disabled):
    user@host# run show security alg status
    ALG Status :
      DNS      : Enabled
      FTP      : Enabled
      H323     : Enabled
      MGCP     : Enabled
      MSRPC    : Enabled
      PPTP     : Enabled
      RSH      : Enabled
      RTSP     : Enabled
      SCCP     : Enabled
      SIP      : Enabled
      SQL      : Enabled
      SUNRPC   : Enabled
      TALK     : Enabled
      TFTP     : Enabled
      IKE-ESP  : Disabled
    
  • On High-end SRX devices (by default, H323, MGCP, RTSP, SCCP, SIP, and IKE-ESP are disabled):
    user@host# run show security alg status
    ALG Status :
      DNS      : Enabled
      FTP      : Enabled
      H323     : Disabled
      MGCP     : Disabled
      MSRPC    : Enabled
      PPTP     : Enabled
      RSH      : Enabled
      RTSP     : Disabled
      SCCP     : Disabled
      SIP      : Disabled
      SQL      : Enabled
      SUNRPC   : Enabled
      TALK     : Enabled
      TFTP     : Enabled
      IKE-ESP  : Disabled
    

To change the status of the ALG:

  • To disable a specific ALG:
    # set security alg [alg-name] disable
    # commit
    
  • To enable a specific ALG:
    # set security alg [alg-name]
    # commit
    

Related Links

Comment on this article > Affected Products Browse the Knowledge Base for more articles related to these product categories. Select a category to begin.

Getting Up and Running with Junos

Getting Up and Running with Junos Security Alerts and Vulnerabilities Product Alerts and Software Release Notices Problem Report (PR) Search Tool EOL Notices and Bulletins JTAC User Guide Customer Care User Guide Pathfinder SRX High Availability Configurator SRX VPN Configurator Training Courses and Videos End User Licence Agreement Global Search