Support Support Downloads Knowledge Base Service Request Manager My Juniper Community

Knowledge Base

Search our Knowledge Base sites to find answers to your questions.

Ask All Knowledge Base Sites All Knowledge Base Sites JunosE Defect (KA)Knowledge BaseSecurity AdvisoriesTechnical BulletinsTechnotes Sign in to display secure content and recently viewed articles

[Archive] How Do I Configure a Policy With the No-Session-Backup Option?

0

0

Article ID: KB6835 KB Last Updated: 30 Jul 2010Version: 5.0
Summary:

How Do I Configure a Policy With the No-Session-Backup Option?

Symptoms:

Environment:

  • Valid for Serial
  • no-session-backup
Solution:

note:This article applies to ScreenOS 4.0.0-DIAL, 4.0.0-DIAL2, and 5.0.

The "valid for serial", or "no-session-backup" option is applicable only on policies between the trust and untrust zones. When a fail-over occurs, due to bandwidth constrictions, an administrator may want only critical services to be allowed. An example of this is allowing SMTP and specific HTTP policies. For all other policies, the policy lookup will skip them if the "no-session-backup" option is enabled.


 

To configure a policy with the no-session-backup option, perform the following steps:

Open the Command Line Interface. For more information on accessing the Command Line Interface, go to Accessing the Command Line Interface Using Telnet.

From the command line, create a policy using the "no-session-backup" option. For example:

 set policy from trust to untrust any any any permit no-session-backup

´┐Żnote: This can also be performed in the WebUI.   In the WebUI, the option can be disabled using the "valid for serial" advanced policy option.


 

 

To disable the "valid for serial" option in the WebUI, perform the following steps:

Open the WebUI. For more information on accessing the WebUI, go to Accessing Your NetScreen Using the WebUI.

From the NetScreen options menu, click Policies.
 

Image of step two


Locate the policy that you wish to edit, and then click Edit.
 

Image of step three

Click Advanced.
 

Image of step four

Click to clear Valid for Serial.
 

Image of step five

Click OK.

Image of step six


 

Comment on this article > Affected Products Browse the Knowledge Base for more articles related to these product categories. Select a category to begin.

Security Alerts and Vulnerabilities

Security Alerts and Vulnerabilities Product Alerts and Software Release Notices Problem Report (PR) Search Tool EOL Notices and Bulletins JTAC User Guide Customer Care User Guide Pathfinder SRX High Availability Configurator SRX VPN Configurator Training Courses and Videos End User Licence Agreement Global Search