【正文】 udp, If: , Pkts: 0, Bytes: 0 按過濾條件查看會(huì)話（1）ScreenOS在CLI下使用get session命令可以按過濾條件查看會(huì)話，有以下命令選項(xiàng)：命令幫助：JP1000A get session redirect output| match outputreturndstip destination ip addressdstmac destination mac addressdstport destination port number or rangehardware show hardware sessions onlyid show sessions with idikenat show ikenat ALG infopolicyid policy idprotocol protocol number or rangerm show sessions for resource managementservice show sessions with service typesrcip source ip addresssrcmac source mac addresssrcport source port number or rangetunnel show tunnel sessionsvsdid get vsdid specified sessions示例：JP1000A get session srcip alloc 1366/max 524288, alloc failed 0, mcast alloc 0, di alloc failed 0total reserved 0, free sessions in shared pool 522922slot 2: hw0 alloc 1363/max 524287 Total 448 sessions according filtering criteria.id 517142/s0*,vsys 0,flag 00200450/0000/0081,policy 20026,time 0, dip 0 module 0 if 46(nspflag 800901):,6,00000c07ac21,sess token 4,vlan 0,tun 0,vsd 0,route 8,wsf 0 if 45(nspflag 800900):,6,00000c07ac5f,sess token 3,vlan 0,tun 0,vsd 0,route 6,wsf 0id 517222/s0*,vsys 0,flag 00200440/0000/0003,policy 20028,time 2, dip 0 module 0（2）JunOS在CLI 操作模式下使用show security flow session命令可以按過濾條件查看會(huì)話，有以下命令選項(xiàng)：syroJP650A show security flow session Possible pletions: [Enter] Execute this mand application Application protocol name brief Show brief output (default) destinationport Destination port (1..65535) destinationprefix Destination IP prefix or address extensive Show detailed output family Show session by family idp Show idp sessions interface Name of ining or outgoing interface nat Show sessions with network address translation protocol IP protocol number resourcemanager Show sessions with resource manager sessionidentifier Show session with specified session identifier sourceport Source port (1..65535) sourceprefix Source IP prefix or address summary Show output summary tunnel Show tunnel sessions | Pipe through a mand示例：syroJP650A show security flow session sourceprefix Session ID: 168247, Policy name: selftrafficpolicy/1, Timeout: 1800, Valid In: 。在CLI 操作模式下命令為：show chassis routingengine示例：syroJP650A show chassis routingengine Routing Engine status: Temperature 31 degrees C / 87 degrees F CPU temperature 31 degrees C / 87 degrees F Total memory 2048 MB Max 1065 MB used ( 52 percent) Control plane memory 1104 MB Max 442 MB used ( 40 percent) Data plane memory 944 MB Max 632 MB used ( 67 percent) CPU utilization: User 6 percent Background 0 percent Kernel 1 percent Interrupt 0 percent Idle 93 percent Model RESRXSMESRE6 Serial ID AAAW4729 Start time 20120712 17:54:51 CST Uptime 177 days, 15 hours, 50 minutes, 35 seconds Last reboot reason 0x200:chassis control reset Load averages: 1 minute 5 minute 15 minute syroJP3600A show chassis routingengine node0:Routing Engine status: Slot 0: Current state Master Election priority Master (default) DRAM 1023 MB Memory utilization 39 percent CPU utilization: User 0 percent Background 0 percent Kernel 5 percent Interrupt 0 percent Idle 94 percent Model REPPC1200A Start time 20120713 10:06:41 CST Uptime 176 days, 23 hours, 40 minutes, 35 seconds Last reboot reason 0x1:power cycle/failure Load averages: 1 minute 5 minute 15 minute node1:Routing Engine status: Slot 0: Current state Master Election priority Master (default) DRAM 1023 MB Memory utilization 34 percent CPU utilization: User 0 percent Background 0 percent Kernel 5 percent Interrupt 0 percent Idle 95 percent Model REPPC1200A Start time 20120716 14:39:07 CST Uptime 173 days, 19 hours, 6 minutes, 11 seconds Last reboot reason Router rebooted after a normal shutdown. Load averages: 1 minute 5 minute 15 minute  查看Session會(huì)話信息 查看會(huì)話總數(shù)（1）ScreenOS當(dāng)前會(huì)話總數(shù)達(dá)到平時(shí)峰值的2倍 或 設(shè)備最大會(huì)話數(shù)的70%，需要關(guān)注、報(bào)警。另，SRX3600的雙機(jī)采用虛擬機(jī)箱技術(shù)后，node0為主墻、node1為備墻。F (3739。此手冊(cè)基本涵蓋了常規(guī)操作、巡檢操作等駐場(chǎng)維護(hù)工作所需要的操作指導(dǎo)，各工程師也可根據(jù)自身駐場(chǎng)項(xiàng)目特點(diǎn)確定日常巡檢的內(nèi)容。C), 8739。C)（2）JunOS在CLI 操作模式下命令為：show chass