SRX Services Gateway
Highlighted
SRX Services Gateway

Is UTM on non-standard ports possible on SRX?

‎05-22-2011 02:01 AM

Hi All,

Does anybody happen to know if UTM on SRX is supportted on non-standard ports?

For example, we have SMTP over SSL (port 465) - will antispam work?
(I understand that it can't decrypt SSL, but spam blocking is done by ip
addersses, right?)

Or if we have HTTP on port 8000 - can I make antivirus scan this traffic?
Or content filtering?

Thanks!

Best Regards,
PK

Juniper Ambassador, Juniper Networks Certified Instructor,
JNCIE-SEC #98, JNCIE-ENT #393, JNCIE-SP #2253
Twitter: @JuniperTrain
GitHub: https://github.com/pklimai
[Juniper Authorized Education & Support in Russia]
2 REPLIES 2
Highlighted
SRX Services Gateway

Re: Is UTM on non-standard ports possible on SRX?

‎05-22-2011 02:51 PM

Answer1. There is no way a AntiSpam will even try to go into the application header and identify if the Application is SMTP. The only 1 way for the AS to identify the packetsl and that is to look at the Transport layer header and then port number.

 

AS send a request to the Sophos Antispam Server and The erver tells the SRX if the sender's domain is a Spam sender. Sophos server is non configurable by an SRX user. So this matter can be taken up with the Sophos if they can provide such facility. Nice creativity though!!

 

So, use standard ports for AntiSpam.

 

Answer2. Will post it soon.

Anne Kay
Highlighted
SRX Services Gateway

Re: Is UTM on non-standard ports possible on SRX?

‎10-29-2012 03:06 AM

Hi All

 

Basically, I'm still looking for an answer to this. KB16162 says it is not possible, but is it up to date?

Best Regards,
PK

Juniper Ambassador, Juniper Networks Certified Instructor,
JNCIE-SEC #98, JNCIE-ENT #393, JNCIE-SP #2253
Twitter: @JuniperTrain
GitHub: https://github.com/pklimai
[Juniper Authorized Education & Support in Russia]