Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
ON THIS PAGE
 

session-affinity

Syntax

Hierarchy Level

Description

Enable VPN session affinity. In session affinity feature, we’ve optimized tunnel redistribution. After tunnel redistribution, the data path might not be optimal, hence we recommend that you enable VPN session affinity to ensure that the data path is optimized. During optimization, the current data path experiences a higher packet delay until it is fully optimized.

This feature is supported on SRX5400, SRX5600, and SRX5800 devices. By default, VPN session affinity is disabled.

Required Privilege Level

security—To view this statement in the configuration.

security-control—To add this statement to the configuration.

Release Information

Statement introduced in Junos OS Release 11.4R5.

Starting with Junos OS Release 15.1X49-D10, IPsec session affinity is supported for IPsec tunnel-based traffic by the SRX5K-MPC3-100G10G (IOC3) and the SRX5K-MPC3-40G10G (IOC3) for SRX5400, SRX5600, and SRX5800 devices through improved flow module and session cache.

Related Documentation