Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
ON THIS PAGE
 

clear services stateful-firewall flows

Syntax

Description

Clear stateful firewall flows. Issue this command to clear the stateful firewall flows for the specified option. The default option is "none", that is, to close all stateful firewall flows unless another option is specified.

Starting in Junos Release 14.1, the method for closing flows has changed. With the change, even for peak flows, the command prompt now returns to an active state after 30 seconds and the clear command completes in 90 to 120 seconds. In previous releases, closing peak flows could take as long as 4 minutes, after which the command prompt would return. Note too that during the first 30 seconds of issuing the command, the flows to be deleted remain visible in the show services stateful-firewall flows command output.

Options

none

Clear all stateful firewall flows.
destination-port destination-port

(Optional) Clear stateful firewall flows for a particular destination port. The range of values is 0 to 65535.
destination-prefix destination-prefix

(Optional) Clear stateful firewall flows for a particular destination prefix.
interface interface-name

(Optional) Clear stateful firewall flows for a particular interface. On M Series and T Series routers, the interface-name can be ms-fpc/pic/port or rspnumber.

protocol

(Optional) Clear stateful firewall flows for one of the following IP types:

  • number—Numeric protocol value from 0 to 255.

  • ah—IPsec Authentication Header protocol

  • egp—An exterior gateway protocol

  • esp—IPsec Encapsulating Security Payload protocol

  • gre—A generic routing encapsulation protocol

  • icmp—Internet Control Message Protocol

  • igmp—Internet Group Management Protocol

  • ipip—IP-over-IP Encapsulation Protocol

  • ospf—Open Shortest Path First protocol

  • pim—Protocol Independent Multicast protocol

  • rsvp—Resource Reservation Protocol

  • sctp—Stream Control Protocol

  • tcp—Transmission Control Protocol

  • udp—User Datagram Protocol
service-set service-set

(Optional) Clear stateful firewall flows for a particular service set.
source-port source-port

(Optional) Clear stateful firewall flows for a particular source port. The range of values is from 0 through 65535.
source-prefix source-prefix

(Optional) Clear stateful firewall flows for a particular source prefix.

Required Privilege Level

view

Output Fields

Table 1 lists the output fields for the clear services stateful-firewall flows command. Output fields are listed in the approximate order in which they appear.

Table 1: clear services stateful-firewall flows Output Fields

Field Name

Field Description

Interface

Name of an adaptive services interface.

Service set

Name of the service set from which flows are being cleared.

Conv removed

Number of conversations removed.

Sample Output

clear services stateful-firewall flows

Release Information

Command introduced before Junos OS Release 7.4.

Related Documentation