История страницы

esr# show ip firewall counters
trusted self
Zone-pair                        Rule         Action            Pkts         Bytes        Description
------------------------------   ----------   ---------------   ----------   ----------   --------------------
any/any                          default      deny              0            0            --
trusted/self                     1            permit            0            0            From local to router
trusted/trusted                  1            permit            0            0            --

esr# show ip firewall sessions
 Codes: E - expected, U - unreplied,
        A - assured, C - confirmed

Prot    Aging        Inside source           Inside destination      Outside source          Outside destination     Pkts         Bytes        Status   
-----   ----------   ---------------------   ---------------------     ---------------------   ---------------------   ----------   ---------- vrrp   4.4.4.4------   
icmp    22           10.0.22.3      224         10.0.0.1822.15              10.0.22.3              4 10.40.422.415       224.0.0.18       1            84           C        
udp     19           192.168.0.15:138        192.168.0.37:138       --  192.168.0.15:138    --    192.168.0.37:138        5            1100         UC 

esr# show ipv6 firewall counters trusted self
Zone-pair                        Rule         Action            Pkts         Bytes        Description
------------------------------   ----------   ---------------   ----------   ----------   --------------------
any/any                          default      deny              0            0            --
trusted/self                     1            permit            0            0            From local to router
trusted/trusted                  1            permit            0            0            --

esr# show ipv6 firewall sessions
esr-15# show ipv6 firewall sessions 
 Codes: E - expected, U - unreplied,
        A - assured, C - confirmed

Prot    Aging        Inside source           Inside destination      Outside source          Outside destination     Pkts         Bytes        Status   
-----   ----------   ---------------------   ---------------------   ---------------------   ---------------------   ----------   ----------   ------   
icmp6   13           fc00::2                 fc00::21                 fc00::2                 fc00::21                 --           -- icmp6           C        
tcp     112          [fc00::2]:42156         [fc00::1]:22            [fc00::2]:42156         [fc00::1]:22            --           --     --      AC 

esr# show security zone-pair
From zone       To zone         VRF                                Description                                   
-------------   -------------   --------------------------------   ------------------------------------------- 
trusted         untrusted       --                                 Transit zone-pair
trusted         trusted         --                                 --
trusted         self            WAN-2                              From WAN-2
untrusted       self            WAN-1                              From WAN-1

esr# show security zone-pair configuration trusted self
Order:                       1
Description:                 --
Matching pattern:
    Protocol:      tcp(6)     Src-addr     icmp
    Fragment:                
    IP options:              
    Source MAC:              any
    src-portDestination MAC:         any
    Dest-addrSource address:          10.0.34.12
    Destination address:     10.0.34.90
    Destination NAT:         --
    Application:     any     dest-port   --
Action:     23 0            0    Permit
Status:                      Enabled
--------------------------------------------------------------------------------