[ Contents] [ Prev] [ Next] [ Index] [ Report an Error]

show security flow session application

Syntax



         
show security flow session application       

         
           application-name           
    

<node (           node-id          | all | local
| primary)>

Release Information

Command introduced in Release 8.5 of JUNOS software; node options added in Release 9.0 of JUNOS software.

Description

Display information about each session of the specified application type.

This command is supported on J-series and SRX-series devices.

Options

application-name —Type of application about which to display sessions information. Possible values are

dnsDomain Name System
ftpFile Transfer Protocol
ignoreIgnore application type
mgcp-caMedia Gateway Control Protocol with Call Agent
mgcp-uaMGCP with User Agent
pptpPoint-to-Point Tunneling Protocol
q931ISDN connection control protocol
rasRAS
realaudioRealAudio
rshUNIX remote shell services
rtspReal-Time Streaming Protocol
sccpSkinny Client Control Protocol
sipSession Initiation Protocol
sqlnet-v2Oracle SQLNET
talkTALK program
tftpTrivial File Transfer Protocol

node—(Optional) For chassis cluster configurations, display sessions for the specified application type or application set on a specific node.

node-id —Identification number of the node. It can be 0 or 1.
all—Display information about all nodes.
local—Display information about the local node.
primary—Display information about the primary node.

Required Privilege Level

view

List of Sample Output

show security flow session application ftp
show security flow session application sip node primary

Output Fields

Table 39 lists the output fields for the show security flow session application command. Output fields are listed in the approximate order in which they appear.

Table 39: show security flow session application Output Fields

Field Name	Field Description
Session ID	Number that identifies the session. You can use this ID to get additional information about the session.
Policy name	Policy that permitted the traffic.
Timeout	Idle timeout after which the session expires.
In	Incoming flow (source and destination IP addresses, application protocol, and interface).
Out	Reverse flow (source and destination IP addresses, application protocol, and interface).

show security flow session application ftp

user@host> show
security flow session application ftp

Session ID: 33, Policy name: default-policy/2, Timeout: 1492
  In: 10.10.10.1/2851 --> 192.168.0.2/21;tcp, If: t1-1/0/0.0
  Out: 192.168.0.2/21 --> 10.10.10.1/2851;tcp, If: ge-0/0/1.0

show security flow session application sip node primary

user@host> show
security flow session application sip node primary

node0:
--------------------------------------------------------------------------
 
Session ID: 246, Policy name: trust_to_dmz/4, State: Active, Timeout: 6
  In: 26.0.29.236/50039 --> 11.0.54.20/5060;udp, If: reth0.0
  Out: 11.0.54.20/5060 --> 11.0.100.196/1047;udp, If: reth2.0
 
Session ID: 253, Policy name: trust_to_dmz/4, State: Active, Timeout: 4
  In: 26.0.29.236/50055 --> 11.0.54.20/5060;udp, If: reth0.0
  Out: 11.0.54.20/5060 --> 11.0.100.196/1048;udp, If: reth2.0
Session ID: 254, Policy name: trust_to_dmz/4, State: Active, Timeout: 64
Resource information : SIP ALG, 1024, 8186
  In: 11.0.54.20/41968 --> 11.0.100.196/1024;udp, If: reth2.0
  Out: 26.0.29.236/5060 --> 11.0.54.20/41968;udp, If: reth0.0
 
3 sessions displayed