show security flow session application
Syntax
Release Information
Command introduced in Release 8.5 of JUNOS Software; node options added in Release 9.0 of JUNOS Software.
Description
Display information about each session of the specified application type.
Options
application-name —Type of application about which to display sessions information. Possible values are
- dnsDomain Name System
- ftpFile Transfer Protocol
- ignoreIgnore application type
- mgcp-caMedia Gateway Control Protocol with Call Agent
- mgcp-uaMGCP with User Agent
- pptpPoint-to-Point Tunneling Protocol
- q931ISDN connection control protocol
- rasRAS
- realaudioRealAudio
- rshUNIX remote shell services
- rtspReal-Time Streaming Protocol
- sccpSkinny Client Control Protocol
- sipSession Initiation Protocol
- sqlnet-v2Oracle SQLNET
- talkTALK program
- tftpTrivial File Transfer Protocol
node—(Optional) For chassis cluster configurations, display sessions for the specified application type or application set on a specific node.
- node-id —Identification number of the node. It can be 0 or 1.
- all—Display information about all nodes.
- local—Display information about the local node.
- primary—Display information about the primary node.
Required Privilege Level
view
Related Topics
clear security flow session application
List of Sample Output
show security flow session application ftpshow security flow session application sip node primary
Output Fields
Table 55 lists the output fields for the show security flow session application command. Output fields are listed in the approximate order in which they appear.
Table 55: show security flow session application Output Fields
Field Name | Field Description |
|---|---|
Session ID | Number that identifies the session. You can use this ID to get additional information about the session. |
Policy name | Policy that permitted the traffic. |
Timeout | Idle timeout after which the session expires. |
In | Incoming flow (source and destination IP addresses, application protocol, and interface). |
Out | Reverse flow (source and destination IP addresses, application protocol, and interface). |
Sample Output
show security flow session application ftp
user@host> show
security flow session application ftp Session ID: 33, Policy name: default-policy/2, Timeout: 1492 In: 10.10.10.1/2851 --> 192.168.0.2/21;tcp, If: t1-1/0/0.0 Out: 192.168.0.2/21 --> 10.10.10.1/2851;tcp, If: ge-0/0/1.0
Sample Output
show security flow session application sip node primary
user@host> show
security flow session application sip node primary
node0: -------------------------------------------------------------------------- Session ID: 246, Policy name: trust_to_dmz/4, State: Active, Timeout: 6 In: 26.0.29.236/50039 --> 11.0.54.20/5060;udp, If: reth0.0 Out: 11.0.54.20/5060 --> 11.0.100.196/1047;udp, If: reth2.0 Session ID: 253, Policy name: trust_to_dmz/4, State: Active, Timeout: 4 In: 26.0.29.236/50055 --> 11.0.54.20/5060;udp, If: reth0.0 Out: 11.0.54.20/5060 --> 11.0.100.196/1048;udp, If: reth2.0 Session ID: 254, Policy name: trust_to_dmz/4, State: Active, Timeout: 64 Resource information : SIP ALG, 1024, 8186 In: 11.0.54.20/41968 --> 11.0.100.196/1024;udp, If: reth2.0 Out: 26.0.29.236/5060 --> 11.0.54.20/41968;udp, If: reth0.0 3 sessions displayed
