Message Image

Skip main navigation (Press Enter).

SRX

last person joined: yesterday

Ask questions and share experiences about the SRX Series, vSRX, and cSRX.

Back to discussions

Expand all | Collapse all

Screen option on SRX

Jump to Best Answer

Halo10-08-2018 10:22

Hi I would like to protect DNS, HTTP and HTTPs flood from external network. Which screen option ...

epaniagua10-08-2018 10:31Best Answer

Halo, Because DNS is mostly used over UDP, you can use the UDP flood screen. In the same way HTTP ...

1. Screen option on SRX

0 Recommend
Halo
Posted 10-08-2018 10:22

Reply Reply Privately
Hi

I would like to protect DNS, HTTP and HTTPs flood from external network.

Which screen option feature can protect all floods?
2. RE: Screen option on SRX
Best Answer

0 Recommend
epaniagua
Posted 10-08-2018 10:31

Reply Reply Privately
Halo,

Because DNS is mostly used over UDP, you can use the UDP flood screen. In the same way HTTP and HTTPS are TCP based and the SRX can protect against SYN flood attacks via the SYN flood option. Find more information about the options and its configuration via this link:

https://www.oreilly.com/library/view/juniper-srx-series/9781449339029/ch11.html

You might also want to check the Source IP Session Limit Screen and Destination IP Session Limit option. They can be found on the same link.

Hope it helps.

Powered by Higher Logic