This article explains why the value for pre-defined application on 15.1X49 series cannot be changed.
In Junos 15.1X49, an error message is shown after attempting to change or edit any value of a pre-defined application; "junos-*".
Example 1
Edit a term of junos-sip.
root@SRX# edit applications application junos-sip term t1
error: cannot use reserved identifier: junos-sip
Example 2 Set a new inactivity-timeout of junos-ftp.
root@SRX# set applications application junos-ftp inactivity-timeout 9000
error: cannot use reserved identifier: junos-ftp
The error message is the expected behavior from Junos 13.3 and higher. It appeared beginning on SRX from Junos 15.1X49. Editing a pre-defined application is NOT allowed.
Take the following steps to create a new custom application.
- Find the content of a pre-defined application.
root@SRX# show groups junos-defaults applications application junos-sip
term t1 alg sip protocol udp destination-port 5060;
term t2 alg sip protocol tcp destination-port 5060;
- Create a new one following the content of the original pre-defined application.
root@SRX# set applications application My-SIP term t1 alg sip protocol udp destination-port 5060 inactivity-timeout 3600
root@SRX# set applications application My-SIP term t2 alg sip protocol tcp destination-port 5060 inactivity-timeout 3600
Verify the newly configured application
root@SRX# show applications application My-SIP
term t1 alg sip protocol udp destination-port 5060 inactivity-timeout 3600;
term t2 alg sip protocol tcp destination-port 5060 inactivity-timeout 3600;
Commit
root@SRX# commit