SCTP
SCTP, or Stream Control Transmission Protocol, is a protocol that is defined in RFC 4960 (an introduction is provided in RFC 3286).
As a transport protocol, SCTP is in a certain way equivalent to TCP or UDP.
While TCP is traffic-oriented, (the sequence of bytes contained in a packet does not have a conceptual beginning or end, but belongs to the stream of traffic that makes up the connection), SCTP — like UDP — is message-oriented (it sends messages in a traffic stream with a beginning and an end, which can be segmented over several packets).
“IPS” tab
Specific configuration
| Maximum no. of IP addresses per endpoint [1-8] | This parameter defines the maximum number of IP addresses allowed for an SCTP association endpoint (multi-homing). |
Timeout (seconds)
| Association negotiation time [2-60] | Maximum duration allowed for an SCTP association to be fully set up (in seconds). This value has to be between 2 and 60 seconds (default value: 20 seconds). |
| Idle timeout [30-604800] | Maximum duration for which the state of an idle SCTP association will be kept (in seconds). This value has to be between 30 and 604800 seconds (default value: 3600 seconds). |
| Association shutdown time [2-60] | Maximum duration allowed for the shutdown phase of an SCTP association (in seconds). This value has to be between 2 and 60 seconds (default value: 20 seconds). |
Support
| Disable intrusion prevention | When this option is selected, the analysis of the SCTP protocol will be disabled and traffic will be allowed if the filter policy allows it |
| Log every SCTP query | Enables or disables the logging of SCTP requests. |