SRX

last person joined: yesterday 

Ask questions and share experiences about the SRX Series, vSRX, and cSRX.

  • 1.  ssh timeout srx4600

    Posted 02-07-2019 08:47

    Hello,
    I wanted to set the timeout of ssh to 4 hours.
    When I type the command:

    set applications application junos-ssh inactivity-timeout 14400

     

    Do I get the following message:

    error: cannot use reserved identifier: junos-ssh

    Software version is: Junos: 18.4R1.8

     

    How did I set the timeout high?

     

    Thank you for your help

     

     



  • 2.  RE: ssh timeout srx4600

    Posted 02-07-2019 09:00

    Create a custom application and use that application in your policy:

    set applications application my-ssh protocol tcp destination-port 22 inactivity-timeout 14400

    set security policies from-zone A to-zone B policy Allow-SSH match application my-ssh

     



  • 3.  RE: ssh timeout srx4600

    Posted 02-08-2019 03:36

    Is there another way?
    With our old SRX3600 this worked without a problem.
    My problem is that I would have to cash out ssh in my-ssh with a lot of rules.



  • 4.  RE: ssh timeout srx4600
    Best Answer

    Posted 02-08-2019 04:40

    Unfortunately there is no other way. Editing pre-defined applications are not not allowed from version 15.1X49 onwards. Please create a custom application if you would like to change inactivity-timeout

    Reference: https://kb.juniper.net/InfoCenter/index?page=content&id=KB31225

    It is easy replace old application name with new application name. Please use "replace pattern junos-ssh with my-ssh"

    Reference: https://kb.juniper.net/InfoCenter/index?page=content&id=KB11711&cat=T_SERIES&actp=LIST