Juniper SRX Packet Flow:
SECURITY SERVICES PACKET WALK
1) Pull packet from queue
2) Police packet
3) Filter packet
4) Session lookup
5a) No existing session
•FW screen check
•Static and destination NAT
•Route lookup
•Destination zone lookup
•Policy lookup
•Reverse static and source NAT
•Setup ALG vector
•Install session
5b) Established session
•FW screen check
•TCP checks
•NAT translation
•ALG processing
6) Filter packet
7) Shape packet
8) Transmit packet
No comments:
Post a Comment