Juniper ns5gt internet keeps being stopped

[r15gsy]

Hi

I have inherited a small site with a Juniper ns5gt acting as firewall.

The internet keeps being dropped and I think the Juniper is the cause.

There is a seperate ADSL modem connected to the untrusted port. This has a live link and has been checked by the telecoms provider.

If I logon to the Juniper is shows a red bar for sessions under the resources status. I take it this is the problem.

If I cycle the power to the Juniper it works for a while, then the sessions fill up again and internet is stopped.

I cannot find any information on what the sessions are, how to monitor or how to change the maximum threshold.

Any help would be appreciated.

 

[r15gsy]

Thought I would share my findings as might help others with a similar problem.

To get the session details, you need to connect by console (i.e. telnet server IP) and then the session commands are:

get session info ----> details of the number of sessions
get session ----> details of each session line by line
get session id xxx ----> details of a specific session in detail

Following this I identified a DDOS from one specific IP keeping sessions open, so added a new policy to deny traffic from that IP address and all is OK since.