turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Hello experts,
I'm new to the SRX, recently I'm playing with the flow debug, configuration like below
show security flow
traceoptions {
file debugtraffic size 5000000 files 10 world-readable;
flag basic-datapath;
packet-filter M2 {
source-prefix 1.1.1.1/32;
destination-prefix 2.2.2.2/32;
}
}
but when look at the log, VRRP messages??(224.0.0.18) were included, sw is 10.2R1.8, appreciate your comment.
C-02
IC-00:THREAD_ID-30:RT:nat_rule_get_ifmip_rt: ctx_type 0, ctx-id 90
IC-00:THREAD_ID-30:RT:nat_rule_get_ifmip_rt: ctx_type 0, ctx-id 90C-02IC-00:THREAD_ID-30:RT:nat_rule_get_ifmip_rt: ctx_type 1, ctx-id 6
IC-00:THREAD_ID-30:RT:nat_rule_get_ifmip_rt: ctx_type 1, ctx-id 6C-02IC-00:THREAD_ID-30:RT:nat_rule_get_ifmip_rt: ctx_type 2, ctx-id 5
IC-00:THREAD_ID-30:RT:nat_rule_get_ifmip_rt: ctx_type 2, ctx-id 5C-02IC-00:THREAD_ID-30:RT:nat_get_mapped_or_incoming_d
IC-00:THREAD_ID-30:RT:nat_get_mapped_or_incoming_dC-02IC-00:THREAD_ID-30:RT:nat_get_mapped_or_incoming_d
IC-00:THREAD_ID-30:RT:nat_get_mapped_or_incoming_dC-02IC-00:THREAD_ID-30:RT:nat_dst_xlate_ip_port: src-ip 192.168.19.178, dst-ip 224.0.0.18, dst_port 1
IC-00:THREAD_ID-30:RT:nat_dst_xlate_ip_port: src-ip 192.168.19.178, dst-ip 224.0.0.18, dst_port 1C-02IC-00:THREAD_ID-30:RT:nat_dst_rule_match: lsys 0, src-ip 192.168.19.178, dst-ip 224.0.0.18, dst-port 1
IC-00:THREAD_ID-30:RT:nat_dst_rule_match: lsys 0, src-ip 192.168.19.178, dst-ip 224.0.0.18, dst-port 1C-02IC-00:THREAD_ID-30:RT:nat_dst_rule_match: nat-rule-tree not inited, aka, no rule exists, src 0, dst 0
IC-00:THREAD_ID-30:RT:nat_dst_rule_match: nat-rule-tree not inited, aka, no rule exists, src 0, dst 0C-02IC-00:THREAD_ID-30:RT:nat_dst_xlate_ip_port: no rule found...
IC-00:THREAD_ID-30:RT:nat_dst_xlate_ip_port: no rule found...Regards
Song
Copyright© 1999-2013 Juniper Networks, Inc. All rights reserved.
