show security flow session dynamic-application junos:RDP 10.0.0.5 is the JumpStation ( attached to ge-0/0/6.0 ) 10.0.1.99 the PC ( attached to ge-0/0/6.0 ) show flow session jcluser@JCL-NGFW-99> show security flow session dynamic-application junos:RDP Session ID: 91269, Policy name: Permit-Trust2Trust/4, Timeout: 1798, Valid In: 10.0.0.5/60370 --> 10.0.1.99/3389;tcp, Conn Tag: 0x0, If: ge-0/0/6.0, Pkts: 1513, Bytes: 91312, Out: 10.0.1.99/3389 --> 10.0.0.5/60370;tcp, Conn Tag: 0x0, If: ge-0/0/5.0, Pkts: 1368, Bytes: 119825, Session ID: 91270, Policy name: Permit-Trust2Trust/4, Timeout: 58, Valid In: 10.0.0.5/58179 --> 10.0.1.99/3389;udp, Conn Tag: 0x0, If: ge-0/0/6.0, Pkts: 1315, Bytes: 405220, Out: 10.0.1.99/3389 --> 10.0.0.5/58179;udp, Conn Tag: 0x0, If: ge-0/0/5.0, Pkts: 1893, Bytes: 1479872, Session ID: 92039, Policy name: Permit-Trust2Trust/4, Timeout: 1800, Valid In: 10.0.0.5/60443 --> 10.0.2.99/3389;tcp, Conn Tag: 0x0, If: ge-0/0/6.0, Pkts: 630, Bytes: 37066, Out: 10.0.2.99/3389 --> 10.0.0.5/60443;tcp, Conn Tag: 0x0, If: ge-0/0/4.0, Pkts: 629, Bytes: 69530, Session ID: 92040, Policy name: Permit-Trust2Trust/4, Timeout: 60, Valid In: 10.0.0.5/55733 --> 10.0.2.99/3389;udp, Conn Tag: 0x0, If: ge-0/0/6.0, Pkts: 936, Bytes: 443400, Out: 10.0.2.99/3389 --> 10.0.0.5/55733;udp, Conn Tag: 0x0, If: ge-0/0/4.0, Pkts: 1005, Bytes: 780477, Total sessions: 4 | |
show security flow session dynamic-application junos:RDP extensive extensive jcluser@JCL-NGFW-99> show security flow session dynamic-application junos:RDP extensive Session ID: 91269, Status: Normal Flags: 0x100040/0x0/0x6003/0x2008103 Policy name: Permit-Trust2Trust/4 Source NAT pool: Null Dynamic application: junos:COTP, Dynamic nested application: junos:RDP Encryption: No Url-category: Unknown Application traffic control rule-set: INVALID, Rule: INVALID Maximum timeout: 1800, Current timeout: 1798 Session State: Valid Start time: 83954, Duration: 1450 In: 10.0.0.5/60370 --> 10.0.1.99/3389;tcp, Conn Tag: 0x0, Interface: ge-0/0/6.0, Session token: 0x7, Flag: 0x1621 Route: 0x120010, Gateway: 10.0.0.5, Tunnel ID: 0, Tunnel type: None Port sequence: 0, FIN sequence: 0, FIN state: 0, Pkts: 1633, Bytes: 96112 Out: 10.0.1.99/3389 --> 10.0.0.5/60370;tcp, Conn Tag: 0x0, Interface: ge-0/0/5.0, Session token: 0x7, Flag: 0x1620 Route: 0x100010, Gateway: 10.0.1.99, Tunnel ID: 0, Tunnel type: None Port sequence: 0, FIN sequence: 0, FIN state: 0, Pkts: 1488, Bytes: 130745 Session ID: 91270, Status: Normal Flags: 0x100040/0x0/0x6003/0x103 Policy name: Permit-Trust2Trust/4 Source NAT pool: Null Dynamic application: junos:RDP, Dynamic nested application: junos:UNKNOWN Encryption: No Url-category: Unknown Application traffic control rule-set: INVALID, Rule: INVALID Maximum timeout: 60, Current timeout: 56 Session State: Valid Start time: 83954, Duration: 1450 In: 10.0.0.5/58179 --> 10.0.1.99/3389;udp, Conn Tag: 0x0, Interface: ge-0/0/6.0, Session token: 0x7, Flag: 0x621 Route: 0x120010, Gateway: 10.0.0.5, Tunnel ID: 0, Tunnel type: None Port sequence: 0, FIN sequence: 0, FIN state: 0, Pkts: 1408, Bytes: 408924 Out: 10.0.1.99/3389 --> 10.0.0.5/58179;udp, Conn Tag: 0x0, Interface: ge-0/0/5.0, Session token: 0x7, Flag: 0x620 Route: 0x100010, Gateway: 10.0.1.99, Tunnel ID: 0, Tunnel type: None Port sequence: 0, FIN sequence: 0, FIN state: 0, Pkts: 1947, Bytes: 1482547 Session ID: 92039, Status: Normal Flags: 0x100040/0x0/0x6003/0x2008103 Policy name: Permit-Trust2Trust/4 Source NAT pool: Null Dynamic application: junos:COTP, Dynamic nested application: junos:RDP Encryption: No Url-category: Unknown Application traffic control rule-set: INVALID, Rule: INVALID Maximum timeout: 1800, Current timeout: 1800 Session State: Valid Start time: 84592, Duration: 812 In: 10.0.0.5/60443 --> 10.0.2.99/3389;tcp, Conn Tag: 0x0, Interface: ge-0/0/6.0, Session token: 0x7, Flag: 0x1621 Route: 0x120010, Gateway: 10.0.0.5, Tunnel ID: 0, Tunnel type: None Port sequence: 0, FIN sequence: 0, FIN state: 0, Pkts: 751, Bytes: 41906 Out: 10.0.2.99/3389 --> 10.0.0.5/60443;tcp, Conn Tag: 0x0, Interface: ge-0/0/4.0, Session token: 0x7, Flag: 0x1620 Route: 0x130010, Gateway: 10.0.2.99, Tunnel ID: 0, Tunnel type: None Port sequence: 0, FIN sequence: 0, FIN state: 0, Pkts: 750, Bytes: 80541 Session ID: 92040, Status: Normal Flags: 0x100040/0x0/0x6003/0x103 Policy name: Permit-Trust2Trust/4 Source NAT pool: Null Dynamic application: junos:RDP, Dynamic nested application: junos:UNKNOWN Encryption: No Url-category: Unknown Application traffic control rule-set: INVALID, Rule: INVALID Maximum timeout: 60, Current timeout: 56 Session State: Valid Start time: 84593, Duration: 811 In: 10.0.0.5/55733 --> 10.0.2.99/3389;udp, Conn Tag: 0x0, Interface: ge-0/0/6.0, Session token: 0x7, Flag: 0x621 Route: 0x120010, Gateway: 10.0.0.5, Tunnel ID: 0, Tunnel type: None Port sequence: 0, FIN sequence: 0, FIN state: 0, Pkts: 1027, Bytes: 447050 Out: 10.0.2.99/3389 --> 10.0.0.5/55733;udp, Conn Tag: 0x0, Interface: ge-0/0/4.0, Session token: 0x7, Flag: 0x620 Route: 0x130010, Gateway: 10.0.2.99, Tunnel ID: 0, Tunnel type: None Port sequence: 0, FIN sequence: 0, FIN state: 0, Pkts: 1059, Bytes: 783143 Total sessions: 4 jcluser@JCL-NGFW-99> | |
General
Content
Integrations