Hide Navigation Pane
Show Navigation Pane
Feedback
Download
SHA1
show security flow session tunnel
Syntax
Release Information
Command introduced in Release 8.5 of Junos OS; Filter and view options introduced in Release 10.2 of Junos OS.
Description
Display information about all tunnel sessions.
Options
none—Display all tunnel sessions.
- brief | extensive | summary
Display the specified level of output.
Required Privilege Level
view
Related Topics
clear security flow session all
List of Sample Output
show security flow session tunnelshow security flow session tunnel brief
show security flow session tunnel extensive
show security flow session tunnel summar
Output Fields
Table 92 lists the output fields for the show security flow session tunnel command. Output fields are listed in the approximate order in which they appear.
Table 92: show security flow session tunnel Output Fields
Field Name | Field Description |
|---|---|
Session ID | Number that identifies the session. You can use this ID to get additional information about the session. |
Policy name | Policy that permitted the traffic. NA (Not Applicable) for a tunnel session. |
Timeout | Idle timeout after which the session expires. NA (Not Applicable) for a tunnel session. |
In | Incoming flow (source and destination IP addresses, application protocol, interface, session token, route, gateway, tunnel, port sequence, FIN sequence, FIN state, packets and bytes). |
Total sessions | Total number of sessions. |
Status | Session status. |
Flag | Internal flag depicting the state of the session, used for debugging purposes. |
Policy name | Name and ID of the policy that the first packet of the session matched. |
Source NAT pool | The name of the source pool where NAT is used. |
Application | Name of the application. |
Maximum timeout | Maximum session timeout. |
Current timeout | Remaining time for the session unless traffic exists in the session. |
Session State | Session state. |
Start time | Time when the session was created, offset from the system start time. |
Valid sessions | Number of valid sessions. |
Pending sessions | Number of pending sessions. |
Invalidated sessions | Number of invalidated sessions. |
Sessions in other states | Number of sessions in other states. |
Sample Output
show security flow session tunnel
root> show security flow session tunnelFlow Sessions on FPC4 PIC1: Session ID: 170000327, Policy name: N/A, Timeout: N/A, Valid In: 50.0.0.111/0 --> 50.0.0.1/513;esp, If: ge-0/0/1.0, Pkts: 0, Bytes: 0 Session ID: 170000328, Policy name: N/A, Timeout: N/A, Valid In: 50.0.0.111/0 --> 50.0.0.1/0;esp, If: ge-0/0/1.0, Pkts: 0, Bytes: 0 Total sessions: 2 Flow Sessions on FPC5 PIC0: Session ID: 200000325, Policy name: N/A, Timeout: N/A, Valid In: 50.0.0.111/0 --> 50.0.0.1/0;esp, If: ge-0/0/1.0, Pkts: 0, Bytes: 0 Session ID: 200000326, Policy name: N/A, Timeout: N/A, Valid In: 50.0.0.111/0 --> 50.0.0.1/0;esp, If: ge-0/0/1.0, Pkts: 0, Bytes: 0 Total sessions: 2 Flow Sessions on FPC5 PIC1: Total sessions: 0
show security flow session tunnel brief
root> show security flow session tunnel briefFlow Sessions on FPC4 PIC1: Session ID: 170000327, Policy name: N/A, Timeout: N/A, Valid In: 50.0.0.111/0 --> 50.0.0.1/513;esp, If: ge-0/0/1.0, Pkts: 0, Bytes: 0 Session ID: 170000328, Policy name: N/A, Timeout: N/A, Valid In: 50.0.0.111/0 --> 50.0.0.1/0;esp, If: ge-0/0/1.0, Pkts: 0, Bytes: 0 Total sessions: 2 Flow Sessions on FPC5 PIC0: Session ID: 200000325, Policy name: N/A, Timeout: N/A, Valid In: 50.0.0.111/0 --> 50.0.0.1/0;esp, If: ge-0/0/1.0, Pkts: 0, Bytes: 0 Session ID: 200000326, Policy name: N/A, Timeout: N/A, Valid In: 50.0.0.111/0 --> 50.0.0.1/0;esp, If: ge-0/0/1.0, Pkts: 0, Bytes: 0 Total sessions: 2 Flow Sessions on FPC5 PIC1: Total sessions: 0
show security flow session tunnel extensive
root> show security flow session tunnel extensive Flow Sessions on FPC4 PIC1:
Session ID: 170000327, Status: Normal
Flag: 0x10000
Policy name: N/A
Source NAT pool: Null
Maximum timeout: N/A, Current timeout: N/A
Session State: Valid
Start time: 8073, Duration: 241
In: 50.0.0.111/0 --> 50.0.0.1/513;esp,
Interface: ge-0/0/1.0,
Session token: 0x1c0, Flag: 0x0x4000621
Route: 0x50010, Gateway: 50.0.0.111, Tunnel: 0
Port sequence: 0, FIN sequence: 0,
FIN state: 0,
Pkts: 0, Bytes: 0
Session ID: 170000328, Status: Normal
Flag: 0x10000
Policy name: N/A
Source NAT pool: Null
Maximum timeout: N/A, Current timeout: N/A
Session State: Valid
Start time: 8073, Duration: 241
In: 50.0.0.111/0 --> 50.0.0.1/0;esp,
Interface: ge-0/0/1.0,
Session token: 0x1c0, Flag: 0x0x621
Route: 0x50010, Gateway: 50.0.0.111, Tunnel: 0
Port sequence: 0, FIN sequence: 0,
FIN state: 0,
Pkts: 0, Bytes: 0
Total sessions: 2
Flow Sessions on FPC5 PIC0:
Session ID: 200000325, Status: Normal
Flag: 0x10000
Policy name: N/A
Source NAT pool: Null
Maximum timeout: N/A, Current timeout: N/A
Session State: Valid
Start time: 8072, Duration: 241
In: 50.0.0.111/0 --> 50.0.0.1/0;esp,
Interface: ge-0/0/1.0,
Session token: 0x1c0, Flag: 0x0x4000621
Route: 0x50010, Gateway: 50.0.0.111, Tunnel: 0
Port sequence: 0, FIN sequence: 0,
FIN state: 0,
Pkts: 0, Bytes: 0
Session ID: 200000326, Status: Normal
Flag: 0x10000
Policy name: N/A
Source NAT pool: Null
Maximum timeout: N/A, Current timeout: N/A
Session State: Valid
Start time: 8072, Duration: 241
In: 50.0.0.111/0 --> 50.0.0.1/0;esp,
Interface: ge-0/0/1.0,
Session token: 0x1c0, Flag: 0x0x621
Route: 0x50010, Gateway: 50.0.0.111, Tunnel: 0
Port sequence: 0, FIN sequence: 0,
FIN state: 0,
Pkts: 0, Bytes: 0
Total sessions: 2
Flow Sessions on FPC5 PIC1:
Total sessions: 0show security flow session tunnel summar
root> show security flow session tunnel summaryFlow Sessions on FPC4 PIC1: Valid sessions: 2 Pending sessions: 0 Invalidated sessions: 0 Sessions in other states: 0 Total sessions: 2 Flow Sessions on FPC5 PIC0: Valid sessions: 2 Pending sessions: 0 Invalidated sessions: 0 Sessions in other states: 0 Total sessions: 2 Flow Sessions on FPC5 PIC1: Valid sessions: 0 Pending sessions: 0 Invalidated sessions: 0 Sessions in other states: 0 Total sessions: 0
