Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
ON THIS PAGE
 

alg

Syntax

Hierarchy Level

Description

CAUTION:

Enabling tracing can adversely impact scale and performance and may increase security risk. We strongly recommend using the trace, tracing, or traceoptions commands only under the guidance of a JTAC support engineer. After collecting the debug information, immediately disable tracing to minimize risk and restore normal system performance.

Configure an Application Layer Gateway (ALG) on the device. An ALG runs as a service and can be associated in policies with specified types of traffic. ALGs are enabled by default.

Options

bytes—Maximum length in bytes of a single DNS message.

  • Range: 512 through 8192 bytes

  • Default: 512 bytes

c-timeout value-in-minutes—Specifies the timeout interval for Session Initiation Protocol (SIP) transactions in minutes.

  • Range: 3 through 10 minutes

  • Default: 3 minutes

endpoint-registration-timeout value-in-seconds—Specifies the timeout value in seconds for entries in the NAT table.

  • Range: 10 through 50,000 seconds

  • Default: 3600 seconds

inactive-media-timeout value-in-seconds—(MGCP) Specifies the maximum time duration that the temporary openings in the firewall (pinholes) remain open for media if no activity is detected.

  • Range: 10 through 2550 seconds

  • Default: 120 seconds

inactive-media-timeout value-in-seconds—(SCCP) Specifies the maximum time duration that the temporary openings in the firewall (pinholes) remain open for media if no activity is detected.

  • Range: 10 through 600 seconds

  • Default: 120 seconds

inactive-media-timeout value-in-seconds—(SIP) Specifies the maximum time duration that the temporary openings in the firewall (pinholes) remain open for media if no activity is detected.

  • Range: 0 through 2550 seconds

  • Default: 120 seconds

maximum-call-duration value-in-minutes—Specifies the maximum time duration at which the call ends and releases the media sessions.

  • Range: 3 through 720 minutes

  • Default: 720 minutes

media-source-port-any—Allow media traffic from any port number. By default, this feature is disabled, which allows a temporary opening in the firewall (pinhole) for media traffic to be opened.

retain-hold-resource—Enable the device to not free media resources for a Session Initiation Protocol (SIP) Application Layer Gateway (ALG), even when a media stream is placed on hold. By default, media stream resources are released when the media stream is held.

transaction-timeout value-in-seconds—Specifies timeout value for Media Gateway Control Protocol (MGCP) transactions. If the timeout value exceeds the limit, the transaction removed by MGCP transactions ager out processing.

  • Range: 3 through 50 seconds

  • Default: 30 seconds

t1-interval value-in-milliseconds—Specifies the maximum round-trip time (RTT) (in milliseconds) allowed for Session Initiation Protocol (SIP) transactions.

  • Range: 500 through 5000 milliseconds

  • Default: 500 milliseconds

t4-interval value-in-seconds—Specifies the maximum length of time (in seconds) that the network can take to clear messages between client and server Session Initiation Protocol (SIP) transactions.

  • Range: 5 through 10 seconds

  • Default: 5 seconds

The remaining statements are explained separately. See CLI Explorer.

Required Privilege Level

security—To view this statement in the configuration.

security-control—To add this statement to the configuration.

Release Information

Statement introduced in Junos OS Release 8.5.

Statement supported in Junos OS Release 18.3R1 for tenant systems.

maximum-message-lengthbytes option introduced in Junos OS Release 10.1.

twamp option introduced in Junos OS Release 18.2R1.