View session table to confirm if traffic hit the policy in paloalto firewall via CLI - Paloalto Firewall https://www.hacktheforum.com/paloalto-firewall/view-session-table-to-confirm-if-traffic-hit-the-policy-in-paloalto-firewall-via-cli/ Hack The Forum Discussion Board en Sat, 16 May 2026 23:11:11 +0000 wpForo 60 View session table to confirm if traffic hit the policy in paloalto firewall via CLI https://www.hacktheforum.com/paloalto-firewall/view-session-table-to-confirm-if-traffic-hit-the-policy-in-paloalto-firewall-via-cli/#post-19903 Mon, 27 Oct 2025 17:34:38 +0000  

show session all filter ...

This command filters the session table (active traffic sessions) and shows details including:

  • Source/Destination IP & port

  • Application, protocol, and action

  • Security policy name that was matched

> show session all filter source <source-ip> destination <destination-ip>

You can add optional filters for fine-tuning:

> show session all filter source <src-ip> destination <dst-ip> destination-port <port>
> show session all filter application <app-name>
> show session all filter rule <rule-name>

 

]]> Paloalto Firewall kajal https://www.hacktheforum.com/paloalto-firewall/view-session-table-to-confirm-if-traffic-hit-the-policy-in-paloalto-firewall-via-cli/#post-19903