Navigation
Supported Platforms
Related Documentation
- SRX Series
- show security log
- Additional Information
- System Log Monitoring and Troubleshooting Guide for Security Devices
show security log file
Syntax
show security log file
Release Information
Command introduced in Release 12.1 of Junos OS.
Description
Enables customers to view event-mode log files stored on the device in binary format.
Required Privilege Level
view
Related Documentation
- SRX Series
- show security log
- Additional Information
- System Log Monitoring and Troubleshooting Guide for Security Devices
List of Sample Output
show security log fileOutput Fields
Table 1 lists the output fields for the show security log file command. Output fields are listed in the approximate order in which they appear.
Table 1: show security log file Output Fields
Field Name | Field Description |
|---|---|
Event time | The timestamp when the security event was received. |
Message | The message describing the security event. |
Sample Output
show security log file
user@host> show
security log file<14>1 2011-08-28T21:14:43 topstar RT_FLOW - RT_FLOW_SESSION_CREATE [junos@2636.1.1.1.2.34 source-address="7.7.7.2" source-port="1" destination-address="8.8.8.2" destination-port="5636" service-name="icmp" nat-source-address="7.7.7.2" nat-source-port="1" nat-destination-address="8.8.8.2" nat-destination-port="5636" src-nat-rule-name="None" dst-nat-rule-name="None" protocol-id="1" policy-name="client-to-server" source-zone-name="client" destination-zone-name="server" session-id-32="60000442" username="N/A" roles="N/A" packet-incoming-interface="ge-0/0/0.0"] <14>1 2011-08-28T21:14:45 topstar RT_FLOW - RT_FLOW_SESSION_CLOSE [junos@2636.1.1.1.2.34 reason="response received" source-address="7.7.7.2" source-port="0" destination-address="8.8.8.2" destination-port="5636" service-name="icmp" nat-source-address="7.7.7.2" nat-source-port="0" nat-destination-address="8.8.8.2" nat-destination-port="5636" src-nat-rule-name="None" dst-nat-rule-name="None" protocol-id="1" policy-name="client-to-server" source-zone-name="client" destination-zone-name="server" session-id-32="60000441" packets-from-client="1" bytes-from-client="84" packets-from-server="1" bytes-from-server="84" elapsed-time="3" application="UNKNOWN" nested-application="UNKNOWN" username="N/A" roles="N/A" packet-incoming-interface="ge-0/0/0.0"] ...
user@host> show security log file<14>1 2011-11-17T23:41:46 topstar RT_FLOW - RT_FLOW_SESSION_CREATE_LS [junos@2636.1.1.1.2.34 logical-system-name="LSYS1" source-address="3001::2" source-port="0" destination-address="5001::2" destination-port="17420" service-name="icmpv6" nat-source-address="3001::2" nat-source-port="0" nat-destination-address="5001::2" nat-destination-port="17420" src-nat-rule-name="None" dst-nat-rule-name="None" protocol-id="58" policy-name="lsys1trust-to-lsys1trust" source-zone-name="lsys1-trust" destination-zone-name="lsys1-trust" session-id-32="60000218" username="N/A" roles="N/A" packet-incoming-interface="ge-0/0/2.0"] <14>1 2011-11-17T23:41:48 topstar RT_FLOW - RT_FLOW_SESSION_CLOSE [junos@2636.1.1.1.2.34 reason="response received" source-address="3001::2" source-port="0" destination-address="5001::2" destination-port="17420" service-name="icmpv6" nat-source-address="3001::2" nat-source-port="0" nat-destination-address="5001::2" nat-destination-port="17420" src-nat-rule-name="None" dst-nat-rule-name="None" protocol-id="58" policy-name="lsys1trust-to-lsys1trust" source-zone-name="lsys1-trust" destination-zone-name="lsys1-trust" session-id-32="60000218" packets-from-client="1" bytes-from-client="104" packets-from-server="1" bytes-from-server="104" elapsed-time="3" application="UNKNOWN" nested-application="UNKNOWN" username="N/A" roles="N/A" packet-incoming-interface="ge-0/0/2.0" encrypted="No "] <14>1 2011-11-17T23:41:48 topstar RT_FLOW - RT_FLOW_SESSION_CLOSE_LS [junos@2636.1.1.1.2.34 logical-system-name="LSYS1" reason="response received" source-address="3001::2" source-port="0" destination-address="5001::2" destination-port="17420" service-name="icmpv6" nat-source-address="3001::2" nat-source-port="0" nat-destination-address="5001::2" nat-destination-port="17420" src-nat-rule-name="None" dst-nat-rule-name="None" protocol-id="58" policy-name="lsys1trust-to-lsys1trust" source-zone-name="lsys1-trust" destination-zone-name="lsys1-trust" session-id-32="60000218" packets-from-client="1" bytes-from-client="104" packets-from-server="1" bytes-from-server="104" elapsed-time="3" application="UNKNOWN" nested-application="UNKNOWN" username="N/A" roles="N/A" packet-incoming-interface="ge-0/0/2.0" encrypted="No "] ...
Published: 2014-05-07
Supported Platforms
Related Documentation
- SRX Series
- show security log
- Additional Information
- System Log Monitoring and Troubleshooting Guide for Security Devices
