port-randomization

Syntax

Hierarchy Level

Release Information

Statement introduced in Release 9.6 of Junos OS.

Description

Disable random port allocation for pool-based and interface source NAT.

Options

disable—Disables random port allocation for pool-based and interface source NAT. For pool-based source NAT and interface NAT, port numbers are allocated randomly by default. Although randomized port number allocation can provide protection from security threats such as DNS poison attacks, it can also affect performance and memory usage for pool-based source NAT.

Usage Guidelines

For configuration instructions and examples, see the Junos OS Security Configuration Guide.

Required Privilege Level

security—To view this statement in the configuration.

security-control—To add this statement to the configuration.