Troushoot remote Access
- Jean-luc KRIKER
Owned by Jean-luc KRIKER
show security flow session extensive
issue1Â Expand source
{primary:node1} jkriker@srx4200-81> show security flow session extensive node0: -------------------------------------------------------------------------- Session ID: 1355, Status: Normal, State: Backup Flags: 0x10000040/0x0/0x2/0x23 Policy name: self-traffic-policy/1 Source NAT pool: Null, Application: junos-ike/54 Dynamic application: junos:UNKNOWN, Encryption: Unknown Application traffic control rule-set: INVALID, Rule: INVALID Maximum timeout: 60, Current timeout: 1810 Session State: Valid Start time: 326171, Duration: 5 In: 192.168.200.20/10952 --> 192.168.220.1/500;udp, Conn Tag: 0x0, Interface: reth0.200, Session token: 0xb, Flag: 0x21 Route: 0x510bc1, Gateway: 192.168.220.2, Tunnel ID: 0, Tunnel type: None Port sequence: 0, FIN sequence: 0, FIN state: 0, Pkts: 0, Bytes: 0 Out: 192.168.220.1/500 --> 192.168.200.20/10952;udp, Conn Tag: 0x0, Interface: .local..0, Session token: 0x2, Flag: 0x30 Route: 0xfffb0006, Gateway: 192.168.220.1, Tunnel ID: 0, Tunnel type: None Port sequence: 0, FIN sequence: 0, FIN state: 0, Pkts: 0, Bytes: 0 Total sessions: 1 node1: -------------------------------------------------------------------------- Session ID: 142909, Status: Normal, State: Active Flags: 0x8000040/0x0/0x2/0x23 Policy name: self-traffic-policy/1 Source NAT pool: Null, Application: junos-ike/54 Dynamic application: junos:UNKNOWN, Encryption: Unknown Application traffic control rule-set: INVALID, Rule: INVALID Maximum timeout: 60, Current timeout: 54 Session State: Valid Start time: 326470, Duration: 6 In: 192.168.200.20/10952 --> 192.168.220.1/500;udp, Conn Tag: 0x0, Interface: reth0.200, Session token: 0xb, Flag: 0x21 Route: 0x4dd3c1, Gateway: 192.168.220.2, Tunnel ID: 0, Tunnel type: None Port sequence: 0, FIN sequence: 0, FIN state: 0, Pkts: 1, Bytes: 84 Out: 192.168.220.1/500 --> 192.168.200.20/10952;udp, Conn Tag: 0x0, Interface: .local..0, Session token: 0x2, Flag: 0x30 Route: 0xfffb0006, Gateway: 192.168.220.1, Tunnel ID: 0, Tunnel type: None Port sequence: 0, FIN sequence: 0, FIN state: 0, Pkts: 0, Bytes: 0 Total sessions: 1 {primary:node1} jkriker@srx4200-81> show security ike security-associations node1: -------------------------------------------------------------------------- {primary:node1} jkriker@srx4200-81> show security ipsec security-associations node1: -------------------------------------------------------------------------- Total active tunnels: 0 Total Ipsec sas: 0 {primary:node1} | |