application-system-cache

Syntax

Hierarchy Level

Description

Enable application system cache (ASC) to save the mapping between an application type and the corresponding destination IP address, destination port, protocol type, and service.

You can enable the ASC for faster application identification process and disable it for performance benefits and security.

ASC is enabled by default when a session is created. You can manually turn this caching off using the set services application-identification no-application-system-cache command. You can re-enable the ASC by using the delete services application-identification no-application-system-cache command.

You can disable ASC for security services and miscellaneous services as follows:

• Disable ASC for security services:
• Disable ASC for miscellaneous services:

You can verify the status of the ASC use the show services application-identification application-system-cache command.

Note the differences in the default behavior of ASC for services starting from Junos OS Release 18.2R1:

• Security services including security policies, application firewall (AppFW), application tracking (AppTrack), application quality of service (AppQoS), Juniper ATP Cloud, IDP, and Content Security do not use the ASC by default.

• Miscellaneous services including advanced policy-based routing (APBR) use the ASC for application identification by default.

Options

Required Privilege Level

security—To view this statement in the configuration.

security-control—To add this statement to the configuration.

Release Information

Statement introduced in Junos OS Release 9.2. The options no-miscellaneous-services and security-services are introduced in Junos OS Release 18.2R1.