Example: Configuring SCCP ALG DoS Attack Protection

This example shows how to configure connection flood protection for the SCCP ALG.

• Requirements
• Overview
• Configuration
• Verification

Requirements

Before you begin, determine whether to protect the SCCP media gateway from DoS flood attacks. See Understanding SCCP ALG DoS Attack Protection.

Overview

In this example, the device is configured to drop any calls exceeding 500 per second per client.

Configuration

J-Web Quick Configuration

Step-by-Step Procedure

To configure call flood protection for the SCCP ALG:

1. Select Configure>Security>ALG.
2. Select the SCCP tab.
3. In the Call flood threshold box, type 500.
4. Click OK to check your configuration and save it as a candidate configuration.
5. If you are done configuring the device, click Commit Options>Commit.

Step-by-Step Procedure

To configure call flood protection for the SCCP ALG:

1. Configure the DoS attack protection:
   [edit]user@host# set security alg sccp application-screen call-flood threshold 500
2. If you are done configuring the device, commit the configuration.
   [edit]user@host# commit

Verification

To verify the configuration is working properly, enter the show security alg sccp command.

Related Topics

• Junos OS Feature Support Reference for SRX Series and J Series Devices
• Understanding SCCP ALG DoS Attack Protection
• SCCP ALG Configuration Overview
• Verifying SCCP ALG Configurations