Support Support Downloads Knowledge Base Juniper Support Portal Community

Knowledge Base

Search our Knowledge Base sites to find answers to your questions.

Ask All Knowledge Base Sites All Knowledge Base Sites JunosE Defect (KA)Knowledge BaseSecurity AdvisoriesTechnical BulletinsTechnotes Sign in to display secure content and recently viewed articles

[SRX] How to find information about sessions and bandwidth used by different applications on the firewall

0

1

Article ID: KB31092 KB Last Updated: 26 Jun 2020Version: 2.0
Summary:

This article describes the CLI commands on the firewall for gathering information on how many sessions or how much bandwidth is used by which application on the firewall.

Symptoms:

A user suddenly sees a lot of slowness in the network and wants to identify what traffic is consuming the bandwidth. He has APP-FW feature enabled on his security polices. In this scenario, what CLI commands can he use to identify the major application contributors? As an administrator, he may choose to deny that traffic if it is not valid.

Solution:

The following commands outputs can be used to identify the applications that have more sessions and consume more bandwidth on the network:

labroot> show services application-identification statistics applications
Last Reset: 2016-07-20 10:33:51 UTC
Application                       Sessions         Bytes          Encrypted
ANDROID-MARKETPLACE-DOWNLOAD      10               9949582        No
DNS                               10838            2056680        No
GOOGLE                            2765             25613979       No
GOOGLE-STATIC                     70               846948         No
HTTP                              1                296            No
NTP                               4                304            No
SSL                               185              51648          Yes

labroot> show services application-identification statistics application-groups
Last Reset: 2016-07-20 10:33:51 UTC
Application Group                 Sessions         Kilo Bytes
junos:infrastructure              11027            2059
junos:infrastructure:encryption   185              50
junos:infrastructure:networking   10842            2008
junos:web                         2846             35557
junos:web:applications            2775             34730
junos:web:cdn                     70               827
junos:web:portal                  2765             25013

 
In this particular use-case, the application ANDROID-MARKETPLACE-DOWNLOAD which is a part of junos:infrastructure is the major consumer of the bandwidth on the device. An administrator may decide to deny this application in the application-firewall ruleset.
Modification History:
2020-06-16: Article reviewed for accuracy; no changes required. Doc is still used today for AppSecure troubleshooting.

Related Links

Comment on this article > Affected Products Browse the Knowledge Base for more articles related to these product categories. Select a category to begin.

Getting Up and Running with Junos

Getting Up and Running with Junos Security Alerts and Vulnerabilities Product Alerts and Software Release Notices Problem Report (PR) Search Tool EOL Notices and Bulletins JTAC User Guide Customer Care User Guide Pathfinder SRX High Availability Configurator SRX VPN Configurator Training Courses and Videos End User Licence Agreement Global Search