SRX learning mode possible ?

Some of the firewalls has learning mode like huaweii or arbor. Is there any possibility to let the set the limits SRX3600 automatically ?
FireBallITAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

dpk_walCommented:
Am not sure if I understand the question correctly.

Can you please provide more details about the problem, which learning mode and limits are you talking about.

SRX works in L2 or L3 mode; we can create blacklist/whitelist on SRX if we want to deny/permit traffic from a specific IP/subnet.

Thank you.
0
FireBallITAuthor Commented:
Can you please provide more details about the problem, which learning mode and limits are you talking about.

Screen values, i want to let the device decide screen values it self
0
dpk_walCommented:
Am looking at all three questions you have posted and to block an attack though screen options helps tremendously, this still takes some processing at SRX.

If we know the traffic is bogus from an IP/subnet; best would be to create a stateless firewall filter and drop the traffic at ingess so the SCP/NPC does not even process the traffic.

For more details on screens, have a look at link below:
http://www.juniper.net/techpubs/en_US/junos12.3x48/information-products/pathway-pages/security/security-attack-denial-of-service.html

Please note the thresholds to be put for screen is to be determined by you, SRX would not auto-calibrate the thresholds and use them.

Thank you.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
FireBallITAuthor Commented:
is there any possibility to add screen options special for some ip addresses ?
For example there are some systems which get 1000+ connection in one moment but some of the systems using only a vds and gets 2-3 connection per minute if i allow 1000+ and if vds get attack it will close all connection in one second :)
0
FireBallITAuthor Commented:
thank you
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Hardware Firewalls

From novice to tech pro — start learning today.