Feature Explorer AI 
×
SRX Series Firewalls in Multinode High Availability support asymmetric traffic flows. While performing deep packet inspection or stateful firewall activity, it is a must that the firewall in the return path have the same state information associated with a packet flow as the state information is built in the originating firewall. To handle asymmetric traffic flows, the Multinode High Availability requires an additional link known as Inter Chassis Datapath (ICD). ICD has the ability to route the traffic between two nodes. It enables 209 the nodes to redirect asymmetric traffic flows to the peer node that is originally in charge of providing stateful services for these flows. This feature ensures the completion of TCP security check (such as three-way handshake and sequence check with window scale factor) for asymmetric traffic flows, thereby enhancing the performance and reliability of the network.
| Product / Application | Software | Introduced Release |
|---|---|---|
| vSRX | Junos OS | 25.4R1 |
| vSRX | Junos OS | 24.2R1 |
| SRX1500 | Junos OS | 24.2R1 |
| SRX1500 | Junos OS | 23.4R1 |
| SRX1600 | Junos OS | 24.2R1 |
| SRX1600 | Junos OS | 23.4R1 |
| SRX2300 | Junos OS | 24.2R1 |
| SRX2300 | Junos OS | 23.4R1 |
| SRX4100 | Junos OS | 24.2R1 |
| SRX4100 | Junos OS | 23.4R1 |
| SRX4120 | Junos OS | 25.2R1 |
| SRX4200 | Junos OS | 24.2R1 |
| SRX4200 | Junos OS | 23.4R1 |
| SRX4300 | Junos OS | 24.2R1 |
| SRX4600 | Junos OS | 24.2R1 |
| SRX4600 | Junos OS | 23.4R1 |
| SRX5400 | Junos OS | 24.2R1 |
| SRX5400 | Junos OS | 23.4R1 |
| SRX5600 | Junos OS | 24.2R1 |
| SRX5600 | Junos OS | 23.4R1 |
| SRX5800 | Junos OS | 24.2R1 |
| SRX5800 | Junos OS | 23.4R1 |