Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 

show security flow session application

 

Syntax

Release Information

Command introduced in Junos OS Release 8.5.

Filter and view options added in Junos OS Release 10.2.

Description

This command displays information about each session of the specified application type.

Options

  • application-name—Type of application about which to display sessions information. Possible values are:

    • dns–Domain Name System

    • ftp–File Transfer Protocol

    • ignore–Ignore application type

    • mgcp-ca–Media Gateway Control Protocol with Call Agent

    • mgcp-ua–MGCP with User Agent

    • pptp–Point-to-Point Tunneling Protocol

    • q931–ISDN connection control protocol

    • ras–Remote Access Server

    • realaudio–RealAudio

    • rsh–UNIX remote shell services

    • rtsp–Real-Time Streaming Protocol

    • sccp–Skinny Client Control Protocol

    • sip–Session Initiation Protocol

    • sqlnet-v2–Oracle SQLNET

    • talk–TALK program

    • tftp–Trivial File Transfer Protocol

  • brief | extensive | summary–Display the specified level of output.

Required Privilege Level

view

List of Sample Output

show security flow session application telnet

show security flow session application telnet brief

show security flow session application telnet extensive

show security flow session application telnet summary

Output Fields

Table 1 lists the output fields for the show security flow session application command. Output fields are listed in the approximate order in which they appear.

Table 1: show security flow session application Output Fields

Field Name

Field Description

Session ID

Number that identifies the session. You can use this ID to get additional information about the session.

Policy name

Policy that permitted the traffic.

Timeout

Idle timeout after which the session expires.

In

Incoming flow (source and destination IP addresses, application protocol, interface, session token, route, gateway, tunnel, port sequence, FIN sequence, FIN state, packets and bytes).

Out

Reverse flow (source and destination IP addresses, application protocol, interface, session token, route, gateway, tunnel, port sequence, FIN sequence, FIN state, packets and bytes).

Total sessions

Total number of sessions.

Status

Session status.

Flag

Internal flag depicting the state of the session, used for debugging purposes.

Policy name

Name and ID of the policy that the first packet of the session matched.

Source NAT pool

The name of the source pool where NAT is used.

Application

Name of the application.

Maximum timeout

Maximum session timeout.

Current timeout

Remaining time for the session unless traffic exists in the session.

Session State

Session state.

Start time

Time when the session was created, offset from the system start time.

Unicast-sessions

Number of unicast sessions.

Multicast-sessions

Number of multicast sessions.

Failed-sessions

Number of failed sessions.

Sessions-in-use

Number of sessions in use.

  • Valid sessions

  • Pending sessions

  • Invalidated sessions

  • Sessions in other states

Maximum-sessions

Number of maximum sessions.

Sample Output

show security flow session application telnet

root> show security flow session application telnet

show security flow session application telnet brief

root> show security flow session application telnet brief

show security flow session application telnet extensive

root> show security flow session application telnet extensive

show security flow session application telnet summary

root> show security flow session application telnet summary