From the course: Juniper Security Policies Fundamentals
Join today to access over 22,600 courses taught by industry experts or purchase this course individually.
Troubleshooting
- [Instructor] Let's look at some of the commands that we can use for troubleshooting security policies. One of the commonly used commands is show security flow session. This shows you the session table. Here we can see the session ID, the policy name, the timeout, the source IP import number and the destination IP import number for the initial connection and for the response, the ingress interface, the packets transferred, and the bytes transferred. Notice here, the source IP for this connection is 192.168.1.2, but the response is destined for another IP address. And this is because I have network address translation configured. This translates my original source address to a different one. Control C to terminate the output. To get high level summary, use the command show security flow session summary. This shows the current count and the maximum count of sessions. I'm going to hit the up arrow and use the command show security flow session. Let's start off with a question mark. The…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.