show security flow gate brief node
Syntax
show security flow gate brief node (node-id | all | local | primary)
Description
Display information about temporary openings known as pinholes or gates in the security firewall for the specified node options in brief mode.
Options
node—(Optional) For chassis cluster configurations,
display gate information on a specific node.
node-id—Identification number of the node. It can be 0 or 1.all—Display information about all nodes.local—Display information about the local node.primary—Display information about the primary node.
Required Privilege Level
view
Output Fields
Table 1 lists the output fields for the show security flow gate brief
node command. Output fields are listed in the approximate order
in which they appear.
Field Name |
Field Description |
|---|---|
|
Number of valid gates. |
|
Number of pending gates. |
|
Number of invalid gates. |
|
Number of gates in other states. |
|
Number of gates in total. |
|
Range of flows permitted by the pinhole. |
|
Tuples used to create the session if it matches the pinhole.
|
|
Application protocol, such as UDP or TCP. |
|
Name of the application. |
|
Idle timeout for the pinhole. |
|
Internal debug flags for the pinhole. |
|
Incoming zone. |
|
Number of resource manager references to the pinhole. |
|
Resource manager information about the pinhole. |
Sample Output
- show security flow gate brief node 0
- show security flow gate brief node 1
- show security flow gate brief node all
- show security flow gate brief node local
- show security flow gate brief node primary
show security flow gate brief node 0
root@antbert> show security flow gate brief node 0 node0: -------------------------------------------------------------------------- Flow Gates on FPC3 PIC1: Valid gates: 0 Pending gates: 0 Invalidated gates: 0 Gates in other states: 0 Total gates: 0 Flow Gates on FPC4 PIC0: Hole: 1.0.0.100-1.0.0.100/0-0->2.0.0.100-2.0.0.100/32707-32707 Translated: 1.0.0.100/0->2.0.0.100/32707 Protocol: tcp Application: FTP ALG/79 Age: 65518 seconds Flags: 0x0080 Zone: trust Reference count: 1 Resource: 1-24576-86016 Valid gates: 1 Pending gates: 0 Invalidated gates: 0 Gates in other states: 0 Total gates: 1 Flow Gates on FPC4 PIC1: Valid gates: 0 Pending gates: 0 Invalidated gates: 0 Gates in other states: 0 Total gates: 0
show security flow gate brief node 1
root@antbert> show security flow gate brief node 1 node1: -------------------------------------------------------------------------- Flow Gates on FPC3 PIC1: Valid gates: 0 Pending gates: 0 Invalidated gates: 0 Gates in other states: 0 Total gates: 0 Flow Gates on FPC4 PIC0: Hole: 1.0.0.100-1.0.0.100/0-0->2.0.0.100-2.0.0.100/32707-32707 Translated: 1.0.0.100/0->2.0.0.100/32707 Protocol: tcp Application: FTP ALG/79 Age: 65514 seconds Flags: 0x0080 Zone: trust Reference count: 1 Resource: 1-24576-86016 Valid gates: 1 Pending gates: 0 Invalidated gates: 0 Gates in other states: 0 Total gates: 1 Flow Gates on FPC4 PIC1: Valid gates: 0 Pending gates: 0 Invalidated gates: 0 Gates in other states: 0 Total gates: 0
show security flow gate brief node all
root@antbert> show security flow gate brief node all node0: -------------------------------------------------------------------------- Flow Gates on FPC3 PIC1: Valid gates: 0 Pending gates: 0 Invalidated gates: 0 Gates in other states: 0 Total gates: 0 Flow Gates on FPC4 PIC0: Hole: 1.0.0.100-1.0.0.100/0-0->2.0.0.100-2.0.0.100/32707-32707 Translated: 1.0.0.100/0->2.0.0.100/32707 Protocol: tcp Application: FTP ALG/79 Age: 65512 seconds Flags: 0x0080 Zone: trust Reference count: 1 Resource: 1-24576-86016 Valid gates: 1 Pending gates: 0 Invalidated gates: 0 Gates in other states: 0 Total gates: 1 Flow Gates on FPC4 PIC1: Valid gates: 0 Pending gates: 0 Invalidated gates: 0 Gates in other states: 0 Total gates: 0 node1: -------------------------------------------------------------------------- Flow Gates on FPC3 PIC1: Valid gates: 0 Pending gates: 0 Invalidated gates: 0 Gates in other states: 0 Total gates: 0 Flow Gates on FPC4 PIC0: Hole: 1.0.0.100-1.0.0.100/0-0->2.0.0.100-2.0.0.100/32707-32707 Translated: 1.0.0.100/0->2.0.0.100/32707 Protocol: tcp Application: FTP ALG/79 Age: 65510 seconds Flags: 0x0080 Zone: trust Reference count: 1 Resource: 1-24576-86016 Valid gates: 1 Pending gates: 0 Invalidated gates: 0 Gates in other states: 0 Total gates: 1 Flow Gates on FPC4 PIC1: Valid gates: 0 Pending gates: 0 Invalidated gates: 0 Gates in other states: 0 Total gates: 0
show security flow gate brief node local
root@antbert> show security flow gate brief node local node0: -------------------------------------------------------------------------- Flow Gates on FPC3 PIC1: Valid gates: 0 Pending gates: 0 Invalidated gates: 0 Gates in other states: 0 Total gates: 0 Flow Gates on FPC4 PIC0: Hole: 1.0.0.100-1.0.0.100/0-0->2.0.0.100-2.0.0.100/32707-32707 Translated: 1.0.0.100/0->2.0.0.100/32707 Protocol: tcp Application: FTP ALG/79 Age: 65504 seconds Flags: 0x0080 Zone: trust Reference count: 1 Resource: 1-24576-86016 Valid gates: 1 Pending gates: 0 Invalidated gates: 0 Gates in other states: 0 Total gates: 1 Flow Gates on FPC4 PIC1: Valid gates: 0 Pending gates: 0 Invalidated gates: 0 Gates in other states: 0 Total gates: 0
show security flow gate brief node primary
root@antbert> show security flow gate brief node primary node0: -------------------------------------------------------------------------- Flow Gates on FPC3 PIC1: Valid gates: 0 Pending gates: 0 Invalidated gates: 0 Gates in other states: 0 Total gates: 0 Flow Gates on FPC4 PIC0: Hole: 1.0.0.100-1.0.0.100/0-0->2.0.0.100-2.0.0.100/32707-32707 Translated: 1.0.0.100/0->2.0.0.100/32707 Protocol: tcp Application: FTP ALG/79 Age: 65500 seconds Flags: 0x0080 Zone: trust Reference count: 1 Resource: 1-24576-86016 Valid gates: 1 Pending gates: 0 Invalidated gates: 0 Gates in other states: 0 Total gates: 1 Flow Gates on FPC4 PIC1: Valid gates: 0 Pending gates: 0 Invalidated gates: 0 Gates in other states: 0 Total gates: 0
Release Information
Command introduced in Junos OS Release 8.5; node options added in Junos OS Release 9.0. Filter options added in Junos OS Release 10.2.