Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

ON THIS PAGE

Syntax
Description
Options
Required Privilege Level
Output Fields
Sample Output
Release Information

show firewall (View)

Syntax

Description

Display statistics about configured firewall filters.

Options

none	Display statistics about configured firewall filters.
filter `filter-name`	Name of a configured filter.
counter `counter-name`	Name of a filter counter.
log	Display log entries for firewall filters.
prefix-action-stats	Display prefix action statistics for firewall filters.
terse	Display firewall filter names only.

Required Privilege Level

view

Output Fields

Table 1 lists the output fields for the show firewall command. Output fields are listed in the approximate order in which they appear.

Table 1: show firewall Output Fields
Field Name	Field Description
`Filter`	Name of a filter that has been configured with the `filter` at the `[edit firewall]` hierarchy level. When an interface-specific filter is displayed, the name of the filter is followed by the full interface name and by either `-i` for an input filter or `-o` for an output filter. When dynamic filters are displayed, the name of the filter is followed by the full interface name and by either `-in` for an input filter or `-out` for an output filter. When a logical system–specific filter is displayed, the name of the filter is prefixed with two underscore (__) characters and the name of the logical system (for example, `__ls1/filter1`).
`Counters`	Display filter counter information: `Name`—Name of a filter counter that has been configured with the `counter` firewall filter action. `Bytes`—Number of bytes that match the filter term under which the `counter` action is specified. `Packets`—Number of packets that matched the filter term under which the `counter` action is specified.
`Policers`	Display policer information: `Name`—Name of policer. `Bytes`—Number of bytes that match the filter term under which the policer action is specified. This is only the number out-of-specification (out-of-spec) byte counts, not all the bytes in all packets policed by the policer. `Packets`—Number of packets that matched the filter term under which the policer action is specified. This is only the number of out-of-specification (out-of-spec) packet counts, not all packets policed by the policer.

Sample Output

show firewall

Release Information

Command introduced before Junos OS Release 10.0 .