In mobile network operator
environments, you can now enforce multilayer security on Stream Control Transmission Protocol (SCTP)
traffic to prevent information from leaking and prevent attackers
from causing denial of service, network congestion, and outages
that disrupt data and voice services for mobile subscribers. In
addition to enabling stateful inspection with multi-homing support,
multi-chunk inspection and protocol validation of SCTP, this feature
enables you to filter SCTP traffic based on payload protocol IDs (PPIDs)
and to filter Diameter and SS7 traffic over SCTP. SCTP security
is supported only on PA-5200 Series and VM-Series firewalls and
requires content release version 785 or a later version. |