show security flow session brief node
语法
show security flow session brief node (node-id | all | local | primary)
描述
以简要模式显示有关设备上指定节点选项的所有当前活动安全会话的信息。
选项
node
—(可选)对于机箱群集配置,显示特定节点上的会话信息。
node-id
- 节点的标识号。它可以是 0 或 1。all
- 显示有关所有节点的信息。local
- 显示有关本地节点的信息。primary
- 显示有关主节点的信息。
所需权限级别
视图
输出字段
表 1 列出了命令 show security flow session brief node
的输出字段。输出字段按其出现的大致顺序列出。
字段名称 |
字段说明 |
---|---|
|
标识会话的编号。使用此 ID 获取有关会话的详细信息。 |
|
允许流量的策略。 |
|
会话状态。 |
|
空闲超时,会话过期。 |
|
传入流(源和目标 IP 地址、应用程序协议、接口、会话令牌、路由、网关、隧道、端口序列、FIN 序列、FIN 状态、数据包和字节)。 |
|
反向流(源和目标 IP 地址、应用程序协议、接口、会话令牌、路由、网关、隧道、端口序列、FIN 序列、FIN 状态、数据包和字节)。 |
|
标识中心点会话的数字。使用此 ID 获取有关中心点会话的详细信息。 |
|
会话总数。 |
示例输出
显示安全流会话简介节点 0
root@host> show security flow session brief node 0 node0: -------------------------------------------------------------------------- Flow Sessions on FPC0 PIC1: Session ID: 10000001, Policy name: default-policy-00/2, State: Active, Timeout: 1696, Valid Resource information : FTP ALG, 1, 0 In: 203.0.113.1/60059 --> 203.0.113.2/21;tcp, If: reth0.0, Pkts: 14, Bytes: 626, CP Session ID: 10000001 Out: 203.0.113.2/21 --> 203.0.113.1/60059;tcp, If: reth1.0, Pkts: 13, Bytes: 744, CP Session ID: 10000001 Total sessions: 1 Flow Sessions on FPC0 PIC2: Total sessions: 0 Flow Sessions on FPC0 PIC3: Total sessions: 0
显示安全流会话简介节点 1
root@host> show security flow session brief node 1 node1: -------------------------------------------------------------------------- Flow Sessions on FPC0 PIC1: Session ID: 10000001, Policy name: default-policy-00/2, State: Active, Timeout: 1696, Valid Resource information : FTP ALG, 1, 0 In: 203.0.113.1/60059 --> 203.0.113.2/21;tcp, If: reth0.0, Pkts: 14, Bytes: 626, CP Session ID: 10000001 Out: 203.0.113.2/21 --> 203.0.113.1/60059;tcp, If: reth1.0, Pkts: 13, Bytes: 744, CP Session ID: 10000001 Total sessions: 1 Flow Sessions on FPC0 PIC2: Total sessions: 0 Flow Sessions on FPC0 PIC3: Total sessions: 0
显示安全流会话简介节点全部
root@host> show security flow session brief node all node0: -------------------------------------------------------------------------- Session ID: 10000001, Policy name: default-policy-00/2, State: Active, Timeout: 1696, Valid Resource information : FTP ALG, 1, 0 In: 203.0.113.1/60059 --> 203.0.113.2/21;tcp, If: reth0.0, Pkts: 14, Bytes: 626, CP Session ID: 10000001 Out: 203.0.113.2/21 --> 203.0.113.1/60059;tcp, If: reth1.0, Pkts: 13, Bytes: 744, CP Session ID: 10000001 Total sessions: 1 Flow Sessions on FPC0 PIC2: Total sessions: 0 Flow Sessions on FPC0 PIC3: Total sessions: 0 node1: -------------------------------------------------------------------------- Flow Sessions on FPC0 PIC1: Session ID: 10000001, Policy name: default-policy-00/2, State: Active, Timeout: 1696, Valid Resource information : FTP ALG, 1, 0 In: 203.0.113.1/60059 --> 203.0.113.2/21;tcp, If: reth0.0, Pkts: 14, Bytes: 626, CP Session ID: 10000001 Out: 203.0.113.2/21 --> 203.0.113.1/60059;tcp, If: reth1.0, Pkts: 13, Bytes: 744, CP Session ID: 10000001 Total sessions: 1 Flow Sessions on FPC0 PIC2: Total sessions: 0 Flow Sessions on FPC0 PIC3: Total sessions: 0
显示安全流会话简介节点本地
root@host> show security flow session brief node local node0: -------------------------------------------------------------------------- Flow Sessions on FPC0 PIC1: Session ID: 10000001, Policy name: default-policy-00/2, State: Active, Timeout: 1696, Valid Resource information : FTP ALG, 1, 0 In: 203.0.113.1/60059 --> 203.0.113.2/21;tcp, If: reth0.0, Pkts: 14, Bytes: 626, CP Session ID: 10000001 Out: 203.0.113.2/21 --> 203.0.113.1/60059;tcp, If: reth1.0, Pkts: 13, Bytes: 744, CP Session ID: 10000001 Total sessions: 1 Flow Sessions on FPC0 PIC2: Total sessions: 0 Flow Sessions on FPC0 PIC3: Total sessions: 0
显示安全流会话简介节点主节点
root@host> show security flow session brief node primary node0: -------------------------------------------------------------------------- Flow Sessions on FPC0 PIC1: Session ID: 10000001, Policy name: default-policy-00/2, State: Active, Timeout: 1696, Valid Resource information : FTP ALG, 1, 0 In: 203.0.113.1/60059 --> 203.0.113.2/21;tcp, If: reth0.0, Pkts: 14, Bytes: 626, CP Session ID: 10000001 Out: 203.0.113.2/21 --> 203.0.113.1/60059;tcp, If: reth1.0, Pkts: 13, Bytes: 744, CP Session ID: 10000001 Flow Sessions on FPC0 PIC2: Total sessions: 0 Flow Sessions on FPC0 PIC3: Total sessions: 0
发布信息
Junos OS 8.5 版中引入的命令;Junos OS 9.0 版中添加的节点选项。Junos OS 10.2 版中添加的过滤器选项。