Configuring NSGP Overview

NetScreen Gatekeeper Protocol (NSGP) is a Juniper Networks proprietary peer-to-peer protocol that enables a security device to act as a server for voice-over-IP (VoIP) traffic:

You can use NSGP to prevent overbilling attacks that can occur when using the GPRS tunneling protocol (GTP) for VoIP. By configuring one security device as an NSGP server and another security device as a GTP client, you can keep both server and client aware of the connection status. When a user initiates a call, the NSGP server and GTP client establish a session; when the user completes the call, the client notifies the server, prompting the server to close the session.

Configuring NSGP on a device does not automatically enable the device to handle GTP traffic—it enables the GTP client and NSGP server to close a session at the same time. To enable the GTP client to manage GPRS traffic, you must create a GTP object, and then add that object to the security policy installed on the device. For details on creating a GTP object and adding a GTP object to a security policy, see the Network and Security Manager Administration Guide.

Related Documentation