Hi everybody
I'm looking for information about SRX's junos-http ALG!
I can't find any default ALG option for HTTP,
---------------------------------------------------------------
user@host> show security alg status
ALG Status :
DNS : Enabled
FTP : Enabled
H323 : Enabled
MGCP : Enabled
MSRPC : Enabled
PPTP : Enabled
RSH : Enabled
RTSP : Enabled
SCCP : Enabled
SIP : Enabled
SQL : Enabled
SUNRPC : Enabled
TALK : Enabled
TFTP : Enabled
IKE-ESP : Disabled
---------------------------------------------------------------
however when I issue "show security policies",
I can see that there's an ALG enabled for "http", and can
see also that http's timeout value is configured for 300 seconds.
---------------------------------------------------------------
Policy: PRD-to-UNTRUST-62, action-type: permit, State: enabled, Index: 6, Scope Policy: 0
/omission/
Application: junos-http
IP protocol: tcp, ALG: http, Inactivity timeout: 300
Application: junos-https
IP protocol: tcp, ALG: 0, Inactivity timeout: 1800
---------------------------------------------------------------
My questions follow bellow:
1) Does any one know if "http's ALG" is enabled by default?
and what is it's function? (how does it behavior?)
2) Is it possible to disable http's ALG?
3) TCP's default value is 1800, and I haven't changed any timeout
configuration about junos-http in my environment.
However, "show security policies" shows me that junos-http's
timeout value is 300 seconds. Is this a default value ?