Monitoring Secure Policy Lists

[Contents] [Prev] [Next] [Index] [Report an Error] [No Frames]

JUNOSe 9.1.x Policy Management Configuration Guide > Monitoring Packet Mirroring > Monitoring Secure Policy Lists
Monitoring Secure Policy Lists

Purpose

Display information about only secure policy lists. This command and the output are visible only to authorized users—the mirror-enable command must be enabled prior to using this command. Use the name keyword to display information for a specific secure policy list.

Action

To display information about secure policy lists:
host1#show secure policy-list
                                  Policy Table
                                  ------ -----
Secure IP Policy secureIpPolicy
   Administrative state: enable
   Reference count:      2
   Classifier control list: secClassA
      mirror analyzer-ip-address 192.168.1.1 analyzer-virtual-router default 
analyzer-udp-port 3000 mirror-id 6789 session-id 6543
   Referenced by interface(s): 
      ATM5/0.1  secure-input policy, statistics disabled, virtual-router 
default
      ATM5/0.1  secure-output policy, statistics disabled, virtual-router 
default
L2TP Secure Policy secureL2tpPolicy
   Administrative state: enable
   Reference count:      2
   Classifier control list: *
      mirror analyzer-ip-address 192.168.2.1 analyzer-virtual-router default 
analyzer-udp-port 3000 mirror-id 6789 session-id 6543 (unreachable)
   Referenced by interface(s): 
      TUNNEL l2tp:1/msn.pwh.com/1  secure-input policy, statistics disabled
      TUNNEL l2tp:1/msn.pwh.com/1  secure-output policy, statistics disabled
Meaning

Table 58: show secure policy-list Output Fields

Field Name

Field Description

Policy

Type (IP or L2TP) and name of the policy list

Administrative state

Status of administrative state, enable or disable; set to enable when the policy list is created

Reference count

Number of attachments to interfaces or profiles

Classifier control list

Name of the classifier control list

Mirror analyzer-ip-address

IP address of analyzer device

Analyzer-virtual-router

Analyzer interface virtual router

Analyzer-udp-port

UDP port used to communicate with analyzer device

Mirror-id

Unique identifier of the mirrored session

Session-id

Unique identifier of the user session

Referenced by interface(s)

List of interfaces to which the policy is attached; indicates whether the attachment is at secure input or secure output of interface

Referenced by profile(s)

Not currently supported: always null

Statistics

Not currently supported: always disabled

Table 58 lists show secure policy-list command output fields.

Related Topics

show secure policy-list command

Field Name	Field Description
Policy	Type (IP or L2TP) and name of the policy list
Administrative state	Status of administrative state, enable or disable; set to enable when the policy list is created
Reference count	Number of attachments to interfaces or profiles
Classifier control list	Name of the classifier control list
Mirror analyzer-ip-address	IP address of analyzer device
Analyzer-virtual-router	Analyzer interface virtual router
Analyzer-udp-port	UDP port used to communicate with analyzer device
Mirror-id	Unique identifier of the mirrored session
Session-id	Unique identifier of the user session
Referenced by interface(s)	List of interfaces to which the policy is attached; indicates whether the attachment is at secure input or secure output of interface
Referenced by profile(s)	Not currently supported: always null
Statistics	Not currently supported: always disabled

[Contents] [Prev] [Next] [Index] [Report an Error] [No Frames]