show services stateful-firewall flow-analysis
Syntax
show services stateful-firewall flow-analysis <interface interface-name>
Description
Display stateful firewall flow statistics.
Options
| none | Display standard information about all stateful firewall flow statistics. |
| interface interface-name | (Optional) Display information about a particular interface. |
Required Privilege Level
view
Output Fields
Table 1 lists the output fields for the show services stateful-firewall
flow-analysis command. Output fields are listed in the approximate
order in which they appear.
Field Name |
Field Description |
|---|---|
Total Flows Active |
Total active flows in the MS-PIC including TCP, UDP, ICMP and Softwires. |
Total TCP Flows Active |
Total active TCP flows in the MS-PIC. |
Total UDP Flows Active |
Total active UDP flows in the MS-PIC. |
Total Other Flows Active |
Total other active flows in the MS-PIC including ICMP and softwires. |
Total Predicted Flows Active |
Predicted flows are created only by the ALG traffic using the L3/L4 information available. |
Created Flows per Second |
Flow setup rate at the time of running the command. |
Deleted Flows per Second |
Flow deletion rate at the time of running the command. |
Peak Total Flows Active |
The highest number of active flows since the last PIC restart or since the last time flow statistics are flushed. |
Peak Total TCP Flows Active |
The highest number of active TCP flows since the last PIC restart or since the last time flow stats are flushed. |
Peak Total UDP Flows Active |
The highest number of active UDP flows since the last PIC restart or since the last time flow statistics are flushed. |
Peak Total Other Flows Active |
The highest number of other active flows since the last PIC restart or since the last time flow statistics are flushed. |
Peak Created Flows per Second |
The maximum flow setup rate observed since the last PIC restart or since the last time flow statistics are flushed. |
Peak Deleted Flows per Second |
The maximum flow deletion rate observed since the last PIC restart or from the last time flow statistics are flushed. |
Average HTTP Flow Lifetime(ms) |
Average HTTP Flow Lifetime in millisecond. |
Packets received |
The total number of packets received by the MS-PIC. |
Packets transmitted |
The total number of packets transmitted by the MS-PIC. |
Slow path forward |
The number of packets forwarded in the slow path (i.e. after the successful rule match and flow creation). |
Slow path discard |
The number of packets discarded before the flow creation. |
Flow Rate Data: Number of Samples |
The number of samples used to calculate the flow rate, since the last PIC restart or since the last time flow statistics are flushed. |
Flow Rate Distribution(sec) Flow Operation :Creation Flow Operation :Deletion |
Histogram of the samples used for flow rate calculation. |
Flow Lifetime Distribution(sec): |
Histogram of the samples used to calculate the flow life time in sec. |
Sample Output
show services stateful-firewall flow-analysis
user@host> show services stateful-firewall flow-analysis
Services PIC Name: sp-3/0/0
Flow Analysis Statistics:
Total Flows Active :40
Total TCP Flows Active :0
Total UDP Flows Active :40
Total Other Flows Active :0
Total Predicted Flows Active :0
Created Flows per Second :0
Deleted Flows per Second :0
Peak Total Flows Active :40
Peak Total TCP Flows Active :0
Peak Total UDP Flows Active :40
Peak Total Other Flows Active :0
Peak Created Flows per Second :20
Peak Deleted Flows per Second :20
Average HTTP Flow Lifetime(ms) :0
Packets received :48682539117
Packets transmitted :48682502703
Slow path forward :6550
Slow path discard :0
Flow Rate Data:
Number of Samples: 19720
Flow Rate Distribution(sec)
Flow Operation :Creation
300000+ :0
250000 - 300000 :0
200000 - 250000 :0
160000 - 200000 :0
150000 - 160000 :0
50000 - 150000 :0
40000 - 50000 :0
30000 - 40000 :0
20000 - 30000 :0
10000 - 20000 :0
1000 - 10000 :0
0 - 1000 :19720
Flow Operation :Deletion
300000+ :0
250000 - 300000 :0
200000 - 250000 :0
160000 - 200000 :0
150000 - 160000 :0
50000 - 150000 :0
40000 - 50000 :0
30000 - 40000 :0
20000 - 30000 :0
10000 - 20000 :0
1000 - 10000 :0
0 - 1000 :19720
Flow Lifetime Distribution(sec):
TCP UDP HTTP
240+ :0 0 0
120 - 240 :0 0
60 - 120 :0 0
30 - 60 :0 0
15 - 30 :0 6530
5 - 15 :0 0
1 - 5 :0 0
0 - 1 :0 6530
Sample Output
show services stateful-firewall flow-analysis interface sp-3/0/0
user@host> show services stateful-firewall flow-analysis interface sp-3/0/0
Services PIC Name: sp-3/0/0
Flow Analysis Statistics:
Total Flows Active :40
Total TCP Flows Active :0
Total UDP Flows Active :40
Total Other Flows Active :0
Total Predicted Flows Active :0
Created Flows per Second :0
Deleted Flows per Second :0
Peak Total Flows Active :40
Peak Total TCP Flows Active :0
Peak Total UDP Flows Active :40
Peak Total Other Flows Active :0
Peak Created Flows per Second :20
Peak Deleted Flows per Second :20
Average HTTP Flow Lifetime(ms) :0
Packets received :54696856768
Packets transmitted :54696815873
Slow path forward :7350
Slow path discard :0
Flow Rate Data:
Number of Samples: 22139
Flow Rate Distribution(sec)
Flow Operation :Creation
300000+ :0
250000 - 300000 :0
200000 - 250000 :0
160000 - 200000 :0
150000 - 160000 :0
50000 - 150000 :0
40000 - 50000 :0
30000 - 40000 :0
20000 - 30000 :0
10000 - 20000 :0
1000 - 10000 :0
0 - 1000 :22139
Flow Operation :Deletion
300000+ :0
250000 - 300000 :0
200000 - 250000 :0
160000 - 200000 :0
150000 - 160000 :0
50000 - 150000 :0
40000 - 50000 :0
30000 - 40000 :0
20000 - 30000 :0
10000 - 20000 :0
1000 - 10000 :0
0 - 1000 :22139
Flow Lifetime Distribution(sec):
TCP UDP HTTP
240+ :0 0 0
120 - 240 :0 0
60 - 120 :0 0
30 - 60 :0 0
15 - 30 :0 7330
5 - 15 :0 0
1 - 5 :0 0
0 - 1 :0 7330
Release Information
Command introduced in Junos OS Release 10.4R1.