 | Copyright © 2009, Juniper Networks, Inc. All rights reserved. Trademark Notice. | |
-
show security flow gate
- <node ( node-id | all | local
| primary)>
Command introduced in Release 8.5 of JUNOS software; node options added in Release 9.0 of JUNOS software.
Display information about temporary openings known as pinholes or gates in the security firewall.
Pinholes are used by applications that commonly have both control and data sessions and must create openings in the firewall for the data sessions based on information from the parent sessions.
This command is supported on J-series and SRX-series devices.
node—(Optional) For chassis cluster configurations, display gate information on a specific node.
view
Table 37 lists the output fields for the show security flow gate command. Output fields are listed in the approximate order in which they appear.
Table 37: show security flow gate Output Fields
user@host> show
security flow gate
Hole: 0.0.0.0-0.0.0.0/0-0->40.1.1.252-40.1.1.252/64515-64515 Translated: 0.0.0.0/0->11.0.31.161/25415 Protocol: udp Application: none/0 Age: 101 seconds Flags: 0xe001 Zone: untrust Reference count: 1 Resource: 5-1024-8185 Hole: 0.0.0.0-0.0.0.0/0-0->40.1.1.252-40.1.1.252/1046-1046 Translated: 40.1.1.250/36039->11.0.31.161/5060 Protocol: udp Application: junos-sip/63 Age: 65535 seconds Flags: 0xe200 Zone: untrust Reference count: 1 Resource: 5-1024-8189 Hole: 0.0.0.0-0.0.0.0/0-0->40.1.1.5-40.1.1.5/24101-24101 Translated: 0.0.0.0/0->40.1.1.5/24101 Protocol: udp Application: none/0 Age: 93 seconds Flags: 0xe001 Zone: trust Reference count: 1 Resource: 5-1024-8188 Hole: 0.0.0.0-0.0.0.0/0-0->40.1.1.5-40.1.1.5/24100-24100 Translated: 0.0.0.0/0->40.1.1.5/24100 Protocol: udp Application: none/0 Age: 93 seconds Flags: 0xe001 Zone: trust Reference count: 1 Resource: 5-1024-8191 Hole: 0.0.0.0-0.0.0.0/0-0->40.1.1.250-40.1.1.250/5060-5060 Translated: 0.0.0.0/0->40.1.1.250/5060 Protocol: udp Application: junos-sip/63 Age: 65535 seconds Flags: 0xe200 Zone: trust Reference count: 1 Resource: 5-1024-8190
user@host> show
security flow gate node 0
node0: -------------------------------------------------------------------------- Hole: 0.0.0.0-0.0.0.0/0-0->11.0.30.21-11.0.30.21/24923-24923 Translated: 0.0.0.0/0->11.0.30.21/24923 Protocol: udp Application: none/0 Age: 89 seconds Flags: 0xe001 Zone: trust Reference count: 1 Resource: 5-1024-8192 Hole: 0.0.0.0-0.0.0.0/0-0->11.0.54.20-11.0.54.20/5060-5060 Translated: 0.0.0.0/0->11.0.54.20/5060 Protocol: udp Application: junos-sip/63 Age: 65535 seconds Flags: 0xe200 Zone: trust Reference count: 1 Resource: 5-1024-8188 Hole: 0.0.0.0-0.0.0.0/0-0->11.0.100.196-11.0.100.196/64511-64511 Translated: 0.0.0.0/0->26.0.29.236/25897 Protocol: udp Application: none/0 Age: 88 seconds Flags: 0xe001 Zone: dmz Reference count: 1 Resource: 5-1024-8187 Hole: 0.0.0.0-0.0.0.0/0-0->11.0.100.196-11.0.100.196/64510-64510 Translated: 0.0.0.0/0->26.0.29.236/25896 Protocol: udp Application: none/0 Age: 88 seconds Flags: 0xe001 Zone: dmz Reference count: 1 Resource: 5-1024-8190 Hole: 0.0.0.0-0.0.0.0/0-0->11.0.100.196-11.0.100.196/1024-1024 Translated: 11.0.54.20/41968->26.0.29.236/5060 Protocol: udp Application: junos-sip/63 Age: 65535 seconds Flags: 0xe200 Zone: dmz Reference count: 1 Resource: 5-1024-8186
| Copyright © 2009, Juniper Networks, Inc. All rights reserved. Trademark Notice. | |