[ Contents] [ Prev] [ Next] [ Index] [ Report an Error]

show security flow session destination-port

Syntax



         
show security flow session destination-port       

         
           destination-port-number                

<node (           node-id          | all | local
| primary)>

Release Information

Command introduced in Release 8.5 of JUNOS software; node options added in Release 9.0 of JUNOS software.

Description

Display information about each session that uses the specified destination port.

This command is supported on J-series and SRX-series devices.

Options

destination-port-number —Number of the destination port about which to display sessions information.

Range: 1 through 65535

node—(Optional) For chassis cluster configurations, display sessions for the specified destination port on a specific node.

node-id —Identification number of the node. It can be 0 or 1.
all—Display information about all nodes.
local—Display information about the local node.
primary—Display information about the primary node.

Required Privilege Level

view

List of Sample Output

show security flow session destination-port 21
show security flow session destination-port 40000 node local

Output Fields

Table 40 lists the output fields for the show security flow session destination-port command. Output fields are listed in the approximate order in which they appear.

Table 40: show security flow session destination-port Output Fields

Field Name	Field Description
Session ID	Number that identifies the session. You can use this ID to get additional information about the session.
Policy name	Policy that permitted the traffic.
Timeout	Idle timeout after which the session expires.
In	Incoming flow (source and destination IP addresses, application protocol, and interface).
Out	Reverse flow (source and destination IP addresses, application protocol, and interface).

show security flow session destination-port 21

user@host> show
security flow session destination-port 21

Session ID: 33, Policy name: default-policy/2, Timeout: 1492
  In: 10.10.10.1/2851 --> 192.168.0.2/21;tcp, If: t1-1/0/0.0
  Out: 192.168.0.2/21 --> 10.10.10.1/2851;tcp, If: ge-0/0/1.0

show security flow session destination-port 40000 node local

user@host> show
security flow session destination-port 40000 node local

node0:
--------------------------------------------------------------------------
Session ID: 1, Policy name: sfw1/4, State: Active, Timeout: 60
  In: 1.1.1.2/2000 --> 11.11.1.2/40000;udp, If: reth0.1
  Out: 11.11.1.2/40000 --> 1.1.1.2/2000;udp, If: reth1.1
Session ID: 2, Policy name: sfw2/5, State: Active, Timeout: 60
  In: 1.1.2.2/2000 --> 11.11.2.2/40000;udp, If: reth0.2
  Out: 11.11.2.2/40000 --> 1.1.2.2/2000;udp, If: reth1.2
Session ID: 3, Policy name: sfw3/6, State: Active, Timeout: 60
  In: 1.1.3.2/2000 --> 11.11.3.2/40000;udp, If: reth0.3
  Out: 11.11.3.2/40000 --> 1.1.3.2/2000;udp, If: reth1.3
Session ID: 4, Policy name: sfw4/7, State: Active, Timeout: 60
  In: 1.1.4.2/2000 --> 11.11.4.2/40000;udp, If: reth0.4
  Out: 11.11.4.2/40000 --> 1.1.4.2/2000;udp, If: reth1.4
4 sessions displayed