[ Contents] [ Prev] [ Next] [ Index] [ Report an Error]

show security flow session

Syntax

show security flow session
node ( node-id | all | local | primary)

Release Information

Command introduced in Release 8.5 of JUNOS software; node options added in Release 9.0 of JUNOS software.

Description

Display information about all currently active security sessions on the device.

This command is supported on J-series and SRX-series devices.

Options

none—Display information about all active sessions.

node—(Optional) For chassis cluster configurations, display all active sessions on a specific node.

Required Privilege Level

view

Related Topics

flow

clear security flow session all

List of Sample Output

show security flow session
show security flow session node all

Output Fields

Table 38 lists the output fields for the show security flow session command. Output fields are listed in the approximate order in which they appear.

Table 38: show security flow session Output Fields

Field Name

Field Description

Session ID

Number that identifies the session. Use this ID to get more information about the session.

Policy name

Policy that permitted the traffic.

Timeout

Idle timeout after which the session expires.

In

Incoming flow (source and destination IP addresses, application protocol, and interface).

Out

Reverse flow (source and destination IP addresses, application protocol, and interface).

show security flow session

user@host> show security flow session 
Session ID: 2102, Policy name: self-traffic-policy/1, Timeout: 272
  In: 172.24.68.74/3428 --> 10.157.84.52/23;tcp, If: ge-0/0/0.0
  Out: 10.157.84.52/23 --> 172.24.68.74/3428;tcp, If: .local..0
Session ID: 2111, Policy name: self-traffic-policy/1, Timeout: 1800
  In: 172.24.68.97/3175 --> 10.157.84.52/23;tcp, If: ge-0/0/0.0
  Out: 10.157.84.52/23 --> 172.24.68.97/3175;tcp, If: .local..0
Session ID: 2112, Policy name: self-traffic-policy/1, Timeout: 1781
  In: 172.24.68.97/3176 --> 10.157.84.52/23;tcp, If: ge-0/0/0.0
  Out: 10.157.84.52/23 --> 172.24.68.97/3176;tcp, If: .local..0
3 sessions displayed

show security flow session node all

user@host> show security flow session node all 
node0:
--------------------------------------------------------------------------
Session ID: 1, Policy name: sfw1/4, State: Active, Timeout: 60
  In: 1.1.1.2/2000 --> 11.11.1.2/40000;udp, If: reth0.1
  Out: 11.11.1.2/40000 --> 1.1.1.2/2000;udp, If: reth1.1
Session ID: 2, Policy name: sfw2/5, State: Active, Timeout: 60
  In: 1.1.2.2/2000 --> 11.11.2.2/40000;udp, If: reth0.2
  Out: 11.11.2.2/40000 --> 1.1.2.2/2000;udp, If: reth1.2
Session ID: 3, Policy name: sfw3/6, State: Active, Timeout: 60
  In: 1.1.3.2/2000 --> 11.11.3.2/40000;udp, If: reth0.3
  Out: 11.11.3.2/40000 --> 1.1.3.2/2000;udp, If: reth1.3
Session ID: 4, Policy name: sfw4/7, State: Active, Timeout: 60
  In: 1.1.4.2/2000 --> 11.11.4.2/40000;udp, If: reth0.4
  Out: 11.11.4.2/40000 --> 1.1.4.2/2000;udp, If: reth1.4
4 sessions displayed
node1:
--------------------------------------------------------------------------
Session ID: 1, Policy name: sfw1/4, State: Backup, Timeout: 482
  In: 1.1.1.2/2000 --> 11.11.1.2/40000;udp, If: reth0.1
  Out: 11.11.1.2/40000 --> 1.1.1.2/2000;udp, If: reth1.1
Session ID: 2, Policy name: sfw2/5, State: Backup, Timeout: 476
  In: 1.1.2.2/2000 --> 11.11.2.2/40000;udp, If: reth0.2
  Out: 11.11.2.2/40000 --> 1.1.2.2/2000;udp, If: reth1.2
Session ID: 3, Policy name: sfw3/6, State: Backup, Timeout: 480
  In: 1.1.3.2/2000 --> 11.11.3.2/40000;udp, If: reth0.3
  Out: 11.11.3.2/40000 --> 1.1.3.2/2000;udp, If: reth1.3
Session ID: 4, Policy name: sfw4/7, State: Backup, Timeout: 482
  In: 1.1.4.2/2000 --> 11.11.4.2/40000;udp, If: reth0.4
  Out: 11.11.4.2/40000 --> 1.1.4.2/2000;udp, If: reth1.4
4 sessions displayed
[ Contents] [ Prev] [ Next] [ Index] [ Report an Error]

[an error occurred while processing this directive]