show security flow session resource-manager
Syntax
show security flow session resource-manager
[brief | extensive | summary]
Description
This command displays information about sessions created by the resource manager.
Options
none—Display all resource manager sessions.
| brief | extensive | summary | Display the specified level of output. |
Required Privilege Level
view
Output Fields
Table 1 lists the output
fields for the show security flow session resource-manager command. Output fields are listed in the approximate order in which
they appear.
Field Name |
Field Description |
|---|---|
|
Number that identifies the session. You can use this ID to get additional information about the session. |
|
Policy that permitted the traffic. |
|
Idle timeout after which the session expires. |
|
Information about the session particular to the resource manager, including the name of the ALG, the group ID. and the resource ID. |
|
Incoming flow (source and destination IP addresses, application protocol, interface, session token, route, gateway, tunnel, port sequence, FIN sequence, FIN state, packets and bytes). |
|
Reverse flow (source and destination IP addresses, application protocol, interface, session token, route, gateway, tunnel, port sequence, FIN sequence, FIN state, packets and bytes). |
|
Total number of sessions. |
|
Session status. |
|
Internal flag depicting the state of the session, used for debugging purposes. |
|
Name and ID of the policy that the first packet of the session matched. |
|
The name of the source pool where NAT is used. |
|
Name of the application. |
|
Maximum session timeout. |
|
Remaining time for the session unless traffic exists in the session. |
|
Session state. |
|
Time when the session was created, offset from the system start time. |
|
Number of valid sessions. |
|
Number of pending sessions. |
|
Number of invalidated sessions. |
|
Number of sessions in other states. |
|
Number that identifies the central point session. Use this ID to get more information about the central point session. |
Sample Output
- show security flow session resource-manager
- show security flow session resource-manager brief
- show security flow session resource-manager extensive
- show security flow session resource-manager summary
show security flow session resource-manager
root> show security flow session resource-manager Flow Sessions on FPC10 PIC1: Session ID: 410000664, Policy name: p1/4, Timeout: 1734, Valid Resource information : FTP ALG, 1, 0 In: 200.0.0.10/41047 --> 60.0.0.2/21;tcp, If: ge-7/1/0.0, Pkts: 13, Bytes: 586, CP Session ID: 410001274 Out: 60.0.0.2/21 --> 200.0.0.10/41047;tcp, If: ge-7/1/1.0, Pkts: 13, Bytes: 803, CP Session ID: 410001274 Total sessions: 1 Flow Sessions on FPC10 PIC2: Total sessions: 0 Flow Sessions on FPC10 PIC3: Total sessions: 0
show security flow session resource-manager brief
root> show security flow session resource-manager brief Flow Sessions on FPC10 PIC1: Session ID: 410000664, Policy name: p1/4, Timeout: 1704, Valid Resource information : FTP ALG, 1, 0 In: 200.0.0.10/41047 --> 60.0.0.2/21;tcp, If: ge-7/1/0.0, Pkts: 13, Bytes: 586, CP Session ID: 410001274 Out: 60.0.0.2/21 --> 200.0.0.10/41047;tcp, If: ge-7/1/1.0, Pkts: 13, Bytes: 803, CP Session ID: 410001274 Total sessions: 1 Flow Sessions on FPC10 PIC2: Total sessions: 0 Flow Sessions on FPC10 PIC3: Total sessions: 0
show security flow session resource-manager extensive
root> show security flow session resource-manager extensive
Flow Sessions on FPC10 PIC1:
Session ID: 410000664, Status: Normal
Flags: 0x42/0x0/0x2010103
Policy name: p1/4
Source NAT pool: Null, Application: junos-ftp/1
Dynamic application: junos:UNKNOWN,
Encryption: Unknown
Application traffic control rule-set: INVALID, Rule: INVALID
Maximum timeout: 1800, Current timeout: 1682
Session State: Valid
Start time: 160496, Duration: 153
Client: FTP ALG, Group: 1, Resource: 0
In: 200.0.0.10/41047 --> 60.0.0.2/21;tcp,
Interface: ge-7/1/0.0,
Session token: 0x6, Flag: 0xc0002621
Route: 0x70010, Gateway: 200.0.0.10, Tunnel: 0
Port sequence: 0, FIN sequence: 0,
FIN state: 0,
Pkts: 13, Bytes: 586
CP Session ID: 410001274
Out: 60.0.0.2/21 --> 200.0.0.10/41047;tcp,
Interface: ge-7/1/1.0,
Session token: 0x7, Flag: 0xc0002620
Route: 0x80010, Gateway: 60.0.0.2, Tunnel: 0
Port sequence: 0, FIN sequence: 0,
FIN state: 0,
Pkts: 13, Bytes: 803
CP Session ID: 410001274
Total sessions: 1
Flow Sessions on FPC10 PIC2:
Total sessions: 0
Flow Sessions on FPC10 PIC3:
Total sessions: 0show security flow session resource-manager summary
root> show security flow session resource-manager summary Flow Sessions on FPC10 PIC1: Valid sessions: 1 Pending sessions: 0 Invalidated sessions: 0 Sessions in other states: 0 Total sessions: 1 Flow Sessions on FPC10 PIC2: Valid sessions: 0 Pending sessions: 0 Invalidated sessions: 0 Sessions in other states: 0 Total sessions: 0 Flow Sessions on FPC10 PIC3: Valid sessions: 0 Pending sessions: 0 Invalidated sessions: 0 Sessions in other states: 0 Total sessions: 0
Release Information
Command introduced in Junos OS Release 8.5.
Filter and view options introduced in Junos OS Release 10.2.