Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 

show security flow session extensive node

 

Syntax

Release Information

Command introduced in Junos OS Release 8.5; node options added in Junos OS Release 9.0. Filter options added in Junos OS Release 10.2.

Description

Display information about all currently active security sessions on the device for the specified node options in extensive mode.

Options

node—(Optional) For chassis cluster configurations, display session information on a specific node.

  • node-id —Identification number of the node. It can be 0 or 1.

  • all—Display information about all nodes.

  • local—Display information about the local node.

  • primary—Display information about the primary node.

Required Privilege Level

view

List of Sample Output

show security flow session extensive node 0

show security flow session extensive node 1

show security flow session extensive node all

show security flow session extensive node local

show security flow session extensive node primary

Output Fields

Table 1 lists the output fields for the show security flow session extensive node command. Output fields are listed in the approximate order in which they appear.

Table 1: show security flow session extensive node Output Fields

Field Name

Field Description

Session ID

Number that identifies the session. You can use this ID to get additional information about the session.

Status

Session status.

State

Session state.

Flag

Internal flag depicting the state of the session, used for debugging purposes.

Policy name

Policy that permitted the traffic.

Source NAT pool

The name of the source pool where NAT is used.

Maximum timeout

Maximum session timeout.

Current timeout

Remaining time for the session unless traffic exists in the session.

Start time

Time when the session was created, offset from the system start time.

Duration

Length of time for which the session is active.

In

Incoming flow (source and destination IP addresses, application protocol, interface, session token, flag, route, gateway, tunnel, port sequence, FIN sequence, FIN state, packets and bytes).

Out

Reverse flow (source and destination IP addresses, application protocol, interface, session token, flag, route, gateway, tunnel, port sequence, FIN sequence, FIN state, packets and bytes).

Total sessions

Total number of sessions.

CP Session ID

Number that identifies the central point session. Use this ID to get more information about the central point session.

Sample Output

show security flow session extensive node 0

root@host> show security flow session extensive node 0

show security flow session extensive node 1

root@host> show security flow session extensive node 1

show security flow session extensive node all

root@host> show security flow session extensive node all

show security flow session extensive node local

root@host> show security flow session extensive node local

show security flow session extensive node primary

root@host> show security flow session extensive node primary