Re: SRX junos-http's ALG function and junos-http timeout

Hi Steve, hi to All

Thanks for your reply.

No, I`m not confusing anything. I`m aware about default application settings....

https://www.juniper.net/techpubs/en_US/junos12.1x44/information-products/topic-collections/release-notes/12.1x44-d10/junos-release-notes-12.1X44-d15.pdf

I`m getting "ALG: http" in the "show security policies detail",
and juniper says that it should be an "explicitly associated ALG
with the policy", how you can see at page 71 of the link above.

So, I`m still looking an answer for my questions!
If anyone knows it, please reply me!

Thank You

"show security policies detail"

Policy: ***-to-UNTRUST-62, action-type: permit, State: enabled, Index: 6, Scope Policy: 0
Policy Type: Configured
Sequence number: 3
From zone: TRUST, To zone: UNTRUST
Source addresses:
***-Mgt-IP(global): *************/32
Destination addresses:
***-Content-Farm-Mgt-SEG-2(global): *************/24
***-Content-Farm-Mgt-SEG-1(global): *************/24
Application: junos-http
IP protocol: tcp, ALG: http, Inactivity timeout: 300 <<<<<<<<<<<<<
                          ^^^^^^^^^^^^

Policy: ***-to-UNTRUST-61, action-type: permit, State: enabled, Index: 5, Scope Policy: 0
Policy Type: Configured
Sequence number: 2
From zone: TRUST, To zone: UNTRUST
Source addresses:
***-Mgt-IP(global): ************/32
Destination addresses:
***-Mgt-Svr-SEG-2(global): *************/24
***-Mgt-Svr-SEG-1(global): *************/24
Application: TCP-3995
IP protocol: tcp, ALG: 0, Inactivity timeout: 1800 <<<<<<<<<<<<<
                     ^^^^^^^^^^