As a transport protocol, SCTP is in a certain way equivalent to TCP or UDP.
While TCP is traffic-oriented, (the sequence of bytes contained in a packet does not have a conceptual beginning or end, but belongs to the stream of traffic that makes up the connection), SCTP — like UDP — is message-oriented (it sends messages in a traffic stream with a beginning and an end, which can be segmented over several packets).
|Maximum no. of IP addresses per endpoint [1-8]||This parameter defines the maximum number of IP addresses allowed for an SCTP association endpoint (multi-homing).|
|Association negotiation time [2-60]||
Maximum duration allowed for an SCTP association to be fully set up (in seconds). This value has to be between 2 and 60 seconds (default value: 20 seconds).
|Idle timeout [30-604800]||
Maximum duration for which the state of an idle SCTP association will be kept (in seconds). This value has to be between 30 and 604800 seconds (default value: 3600 seconds).
|Association shutdown time [2-60]||
Maximum duration allowed for the shutdown phase of an SCTP association (in seconds). This value has to be between 2 and 60 seconds (default value: 20 seconds).
|Disable intrusion prevention||
When this option is selected, the analysis of the SCTP protocol will be disabled and traffic will be allowed if the filter policy allows it
|Log every SCTP query||
Enables or disables the logging of SCTP requests.