Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
 

show services sessions

Syntax

Description

Display session information.

Note:

On MX Series routers (with interchassis redundancy configured), the idle timeout for every flow is displayed in the show services session extensive and show services flows extensive commands.

Options

none

Display standard information about all sessions.

brief | extensive | terse

(Optional) Display the specified level of output.

application-protocol protocol

(Optional) Display information about one of the following application protocols:

  • bootp—Bootstrap protocols

  • dce-rpc—Distributed Computing Environment-Remote Procedure Call protocols

  • dce-rpc-portmap—Distributed Computing Environment-Remote Procedure Call protocols portmap service

  • dns—Domain Name System protocol

  • exec—Remote Execution Protocol

  • ftp—File Transfer Protocol

  • h323—H.323

  • icmp—ICMP

  • icmpv6—ICMPv6

  • iiop—Internet Inter-ORB Protocol

  • ike-esp-nat—IKE ALG

  • ip—IP

  • login—LOGIN

  • netbios—NETBIOS

  • netshow—NETSHOW

  • pptp—Point-to-Point Tunneling Protocol

  • realaudio—RealAudio

  • rpc—Remote Procedure Call protocol

  • rpc-portmap—Remote Procedure Call protocol portmap service

  • rtsp—Real-Time Streaming Protocol

  • rsh—Remote Shell

  • sip—Session Initiation Protocol

  • shell—Shell

  • snmp—SNMP

  • sql—SQLNet

  • talk—Talk Program

  • tftp—Trivial File Transfer Protocol

  • traceroute—Traceroute

  • winframe—WinFrame

Note:

You can use the none option with the show services sessions count application-protocol command to display information about sessions other than ALG sessions.

count

(Optional) Display a count of the matching entries.

destination-port destination-port

(Optional) Display information for the specified destination port. The range of values is from 0 to 65,535.

destination-prefix destination-prefix

(Optional) Display information for the specified destination prefix.

interface interface-name

(Optional) Display information about the specified interface. On M Series and T Series routers, interface-name can be ms-fpc/pic/port or rspnumber. On J Series routers, interface-name is ms-pim/0/port.

limit number

(Optional) Maximum number of entries to display.

nat

Display sessions with network address translation.

nat-port-overload-index Displays NAT port overload index; the range is 0 through 127.
protocol protocol

(Optional) Display information about one of the following IP types:

  • number—Numeric protocol value from 0 to 255

  • ah—IPsec Authentication Header protocol

  • egp—An exterior gateway protocol

  • esp—IPsec Encapsulating Security Payload protocol

  • gre—A generic routing encapsulation protocol

  • icmp—Internet Control Message Protocol

  • icmp6—Internet Control Message Protocol version 6

  • igmp—Internet Group Management Protocol

  • ipip—IP-within-IP Encapsulation Protocol

  • ospf—Open Shortest Path First protocol

  • pim—Protocol Independent Multicast protocol

  • rsvp—Resource Reservation Protocol

  • sctp—Stream Control Transmission Protocol

  • tcp—Transmission Control Protocol

  • udp—User Datagram Protocol

service-set service-set

(Optional) Display information for the specified service set.

source-nat-pool Displays the source NAT pool name.
source-port source-port

(Optional) Display information for the specified source port. The range of values is from 0 to 65,535.

source-prefix source-prefix

(Optional) Display information for the specified source prefix.

utilization

(Optional) Display statistical details about session utilization.

Required Privilege Level

view

Output Fields

Table 1 lists the output fields for the show services sessions command. Output fields are listed in the approximate order in which they appear.

Table 1: show services sessions Output Fields

Field Name

Field Description

Level of Output

Interface

Name of the interface.

application-protocol

Session

Session ID that uniquely identifies the session.

All levels

ALG

Name of the application.

terse

Flags

Session flag for the ALG:

  • 0x1—Found an existing session.

  • 0x2—Reached session or flow limit.

  • 0x3—No memory available for new sessions.

  • 0x4—No free session ID available.

  • 0x0000—No session ID found.

All levels

IP Action

Flag indicating whether IP action has been set for the session.

All levels

Offload

Flag indicating whether the session has been offloaded to the Packet Forwarding Engine.

All levels

Asymmetric

Flag indicating whether the session is uni-directional.

terse

application-protocol

Service set

Name of a service set. Individual empty service sets are not displayed.

count

Sessions Count

Number of sessions.

count

Sample Output

show services sessions

show services sessions brief

The output for the show services flows brief command is identical to that for the show services sessions command. For sample output, see show services sessions.

show services sessions extensive

show services sessions terse

show services sessions application-protocol

This command has the same output for the rpc, dce-rpc, rpc-portmap and dce-rpc-portmap ALGs.

show services sessions count

show services sessions destination-port

show services sessions destination-prefix

show services sessions interface

show services sessions protocol

show services sessions service-set

show services sessions source-port

show services sessions source-prefix

Release Information

Command introduced in Junos OS Release 10.4.

Support added in Junos OS Release 19.3R2 for Next Gen Services on MX Series routers MX240, MX480 and MX960 with the MX-SPC3 services card.

The nat, nat-port-overload-index, and source-nat-pool are introduced in Junos OS Release 23.4R1.