Table 39: Service Table Tab Information - Juniper NETWORK AND SECURITY MANAGER 2010.2 - ADMINISTRATION GUIDE REV1 Administration Manual

Copyright © 2010, Juniper Networks, Inc.

Table 39: Service Table Tab Information

Name Name of the service object
Type Type of the service object: service or group
Timeout Service timeout—inactivity timeout after a which a session on a security
device is removed
Category Classification based on the purpose the service is designed for:
email—used for sending and receiving e-mail (POP3, for example)
info seeking—used to retrieve specific information from a server (DNS, for
example)
remote—used for accessing remote servers (Telnet, for example)
security—enable the access of a remote server securely using well known
security mechanisms (HTTPS for example)
other— all other services
Non-ICMP Src The TCP and UDP source port for the service. This column displays a list of
Port IP protocols.
Non-ICMP Dst The TCP and UDP destination port for the service. This column displays a
Port list of IP protocols.
Comment Contains optional comments.
To view service object properties, double-click a service object. In addition to the service
name, category, and service timeout value, you can view the following service settings:
For Non-ICMP services, the service object displays the protocol ID, source port range,
and destination port range.
For ICMP services, the General tab displays the Internet Control Message Protocol
(ICMP) type and code.
For Sun-RPC services, the Sun-RPC tab displays the Sun Microsystems program
identifiers. Sun Remote Procedure Call (Sun-RPC), also known as Open Network
Computing (ONC) RPC, enables a program running on one host to call procedures in
a program running on another host. Because of the large number of RPC services and
the need to broadcast, the transport address of an RPC service is dynamically
negotiated based on the service's program number and version number. Several binding
protocols are defined for mapping the RPC program number and version number to a
transport address.
NOTE: The transport address is comprised of the port number of the server, the program
ID, and the version number.
NSM and security devices support 13 Sun-RPC predefined services. To permit or deny
all Sun-RPC requests, include the Sun-RPC-Any service in a firewall or IDP rule; to
Chapter 8: Configuring Objects
385