Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 

show security alg status

 

Syntax

Release Information

Command modified in Junos OS Release 9.5.

Command output is modified to display the details for the TWMAP ALG in Junos OS Release 18.2.

Description

This command displays the status (enabled/disabled) of the supported Application Layer Gateway (ALG) transactions.

The following list describes the default status on each of these devices:

  • On all SRX Series devices — The RSH, SQL, and IKE-ESP ALGs are disabled by default.

  • SRX1500, SRX4100, SRX4200, SRX5400, SRX5600, and SRX5800 devices—FTP, TFTP, DNS, MS-RPC, PPTP, SUNRPC, and TALK ALGs are enabled by default. All other ALGs are disabled.

  • SRX300, SRX320, SRX340, and SRX380 devices—All supported ALGs except the IKE-ESP, RSH, SQL, and TWAMP ALGs are enabled by default.

Options

  • node—Display the ALG status on a specific node.

  • logical-system—Display the ALG configuration status for a specific logical system.

  • root-logical-system—Display the default ALG configuration status for a root logical system.

Required Privilege Level

view

Related Documentation

List of Sample Output

ALG status

ALG status for a specific logical system

ALG status for all logical systems including root logical system

ALG status for a specific tenant system

ALG status for all tenant systems

ALG status for all logical systems and tenant systems

Output Fields

The following list describes the output fields for the show security alg status command. Output fields are listed in the approximate order in which they appear.

  • DNS—Domain Name Server

  • FTP—File Transfer Protocol

  • H323—H.323 protocol

  • MGCP—Media Gateway Control Protocol

  • MSRPC—Microsoft remote procedure call

  • PPTP—Point-to-Point Tunneling Protocol

  • RSH—UNIX remote shell services

  • RTSP—Real-Time Streaming Protocol

  • SCCP—Skinny Client Control Protocol

  • SIP—Session Initiation Protocol

  • SQL—Oracle SQL

  • SUNRPC—Sun Microsystems remote procedure call

  • TALK—TALK program

  • TFTP—Trivial File Transfer Protocol

  • IKE-ESP—nat—Internet Key Exchange and Encapsulating Security Payload. Configure IKE-ESP ALG with NAT

  • TWAMP—Two-Way Active Measurement Protocol

Sample Output

ALG status

user@host> show security alg status

ALG status for a specific logical system

user@host> show security alg status logical-system LSYS1

ALG status for all logical systems including root logical system

user@host> show security alg status logical-system all

ALG status for a specific tenant system

user@host> show security alg status tenant TN1

ALG status for all tenant systems

user@host> show security alg status tenant all

ALG status for all logical systems and tenant systems

user@host> show security alg status all-logical-systems-tenants