Hi,
It looks like the SRX is not detecting the application for this traffic and probably reading this as TCP packets.
Dynamic application: junos:UNKNOWN
_____________________________________________
The policy allows any traffic between two peers
_____________________________________________
Is the security policy matching "application any"?
I would suggest defining an explicit security policy for sctp using application junos-gprs-sctp because sctp handshake is different to tcp.
Also note:
- You configure one policy to permit SCTP traffic from all client IPs to all server IPs, and another policy to permit SCTP traffic from server IPs to client IPs. If one policy has an SCTP profile, then the same SCTP profile is needed for the reverse policy.
Cheers,
Ashvin