Juniper is looking to disable ALGs in the future. The challenge is they can
work in the right scenarios but that every possible scenario. Because of this
on the data center/high end SRX devices ALGs will be disabled by default. On
the branch devices most of the ALGs will be left on by default. T
On Thu, Aug 12, 2010 at 04:01:47PM -0700, Quoc Hoang wrote:
> IMHO, ALGS should be disabled by default.
From what I've seen, Juniper started disabling over half of the ALGs in
recent ScreenOS releases (probably the ones that JTAC has indicated
cause more problems than they solve).
I'm a little su
Subject: [j-nsp] SRX3400: DNS ALG on 10.2R1
> To: juniper-nsp@puck.nether.net
> Date: Thursday, August 12, 2010, 10:41 AM
> Hello,
>
> I just had a very unusual production outage.
>
> All traffic was flowing through the SRX3400 (in chassis
> cluster mode) no
> problem.
&g
Hello,
I just had a very unusual production outage.
All traffic was flowing through the SRX3400 (in chassis cluster mode) no
problem.
Suddenly, DNS started to fail. Was not passing through the firewall at all
-- all other traffic was.
The resolution was to disable the DNS ALG.
Nothing interes
4 matches
Mail list logo