Flow Detail
Focus
Focus
Prisma SD-WAN

Flow Detail

Table of Contents

Flow Detail

Lets learn more about the flow details table in the Prisma SD-WAN activity tab.
Where Can I Use This?What Do I Need?
  • Prisma SD-WAN
  • Prisma SD-WAN license
The Flow Detail provides information on the following attributes of the flow:
FieldDescription
Flow Decision Bitmap Lists the decisions taken for the flow as it was processed.
Source IP (Port) Source IP and port of the flow origin (depending on the direction of the flow).
Destination IP (Port)Destination IP and port of the destined address of the flow (depending on the direction of the flow).
Application NameName of the application for a particular flow or transaction.
Application CategoryApplication category for the flow.
Alt ApplicationAlternate application is usually the parent application.
Security Policy RuleSecurity policy rule(s) that are applied for the flow.
Source ZoneSource zone (Zone Based Firewall) for the flow.
Destination ZoneDestination zone for the flow.
ActionAction taken to allow or deny the policy rule applied for the flow.
Path Policy SetPath policy set used for the flow.
Path Policy RulePath policy rule used for the flow.
Path Network ContextPath policy context used for the flow.
Path Source Prefix Path source prefix used for the flow.
Path Destination PrefixPath destination prefix used for the flow.
Path With Lowest Probe DNS Transaction Time SelectedLists the path with lowest probe DNS transaction time selected.
Path With Lowest Probe HTTP Transaction Time SelectedLists the path with lowest probe HTTP transaction time selected.
Path With Lowest Probe DNS Transaction Failure Rate SelectedLists the path with lowest probe DNS transaction failure rate selected.
Path With Lowest Probe Init Failure Rate SelectedLists the path with lowest probe Init failure rate selected.
Path With Lowest Probe Packet Loss SelectedLists the path with lowest probe packet loss selected.
Path With Lowest Probe Jitter SelectedLists the path with lowest probe jitter selected.
Path With Lowest Probe Latency SelectedLists the path with lowest probe latency selected.
Path With Lowest LQM Packet Loss SelectedLists the path with lowest LQM packet loss selected.
Path With Lowest LQM Jitter SelectedLists the path with lowest LQM jitter selected.
Path With Lowest LQM Latency SelectedLists the path with lowest LQM latency selected.
QoS Policy SetQoS policy set used for the flow.
QoS Policy RuleQoS policy rule used for the flow.
QoS Network ContextQoS network context used for the flow.
QoS Source PrefixQoS source prefix used for the flow.
QoS Destination PrefixQoS destination prefix used for the flow.
Protocol Protocol detected for that particular flow.
Chosen WAN PathWAN path chosen for that particular flow.
EndpointEndpoint for the flow.
Traffic TypeTraffic type such as transactional, bulk, rt-audio or rt-video.
Priority ClassPriority Class as defined by the Priority Policy.
Flow DirectionFlow direction at the start of transaction.
Start TimeTime when the first packet in this flow was detected.
Last ActivityTime of the flow when the last packet was detected.
New Flow First record for this flow that was detected in the current time window.
PacketsNumber of packets exchanged between client and server.
BytesNumber of bytes exchanged between client and server.
DSCP Fields Seen (LAN > WAN)DSCP markings seen between LAN-to-WAN that is used to change the priority of the packets as they traverse the network.
DSCP Fields Seen (WAN > LAN)DSCP markings seen between WAN-to-LAN that is used to change the priority of the packets as they traverse the network.
OOO PacketsOut of order packets from the client to a server and the server to a client.
SACK PacketsSelective acknowledgment of the packets.
Retransmit PacketsNumber of TCP retransmit packets.
Packet Duplication Applied Per Performance Policy Displays the number of duplication packets applied Per Performance Policy.
Retransmit BytesNumber of TCP retransmit bytes.
RSTNumber of TCP reset packets sent.
SYNNumber of TCP SYN packets sent.
FINNumber of TCP FIN packets sent.
VLANDisplays the VLAN used for the flow.
average_rttAverage round trip time calculated.
average_srtAverage server response time.
average_pgAverage inter-packet gap (a measure of network congestion and packet loss) calculated.
init_successIndicates if the TCP session initiation was successful.
max_rttMaximum round trip time detected.
max_srtMaximum server response time at the application level.
max_pgMaximum inter-packet gap (a measure of network congestion and packet loss) detected.
min_rttMinimum round trip time detected.
min_srtMinimum server response time at the application level.
min_pgMinimum inter-packet gap (a measure of network congestion and packet loss) detected.
success_transactionsNumber of successful transactions.
Probe filter removed one or more filter pathsLists the probe filter removed one or more filter paths.
FEC Applied Per Performance PolicyLists the FEC applied per Performance Policy for that flow.
Flow blocked after reclassification due to User/Group learningLists the flow blocked after reclassification due to User/Group learning.
Chose an L3 Failure Backup Transit pathDisplays the chosen L3 Failure backup transit path for the flow.
Chose an L3 Failure Active Transit pathDisplays the chosen L3 Failure active Transit path for the flow.
Found an L3 Failure Active Transit pathDisplays the found L3 Failure active Transit path for the flow.
Found an L3 Failure Backup Transit pathDisplays the found L3 Failure backup Transit path for the flow.
L3 failure path in the network policy usedDisplays the L3 failure path in the network policy used by the Flow.
Use on L3 failure paths found, but have L3 failures themselves or are not configuredDisplays the flow used on L3 failure paths found, but have L3 failures themselves or are not configured.
Configured use on L3 failure paths found and consideredDisplays the configuration used on L3 failure paths found and considered for that flow.
All Active and Backup paths with a route for destination prefix are down or have L3 failuresDisplays all Active and Backup paths with a route for destination prefix are down or have L3 failures of the flow.
Flow blocked due to TCP state violationDisplays the flow blocked due to TCP state violation.
Flow blocked after Application re-classificationDisplays the Flow blocked after Application re-classification.
Policy allowed Standard VPN on private interfaceDisplays the policy allowed for Standard VPN on private interface for the flow.
Policy allowed Standard VPN on public interfaceDisplays the policy allowed for Standard VPN on public interface for the flow.
Reachable over Standard VPN, disallow direct internetDisplays the flows which are reachable over Standard VPN and disallow direct internet.
Standard VPN allowed on private interfaceDisplays the flow on Standard VPN allowed on private interface.
Standard VPN allowed on public interfaceDisplays the flow on Standard VPN allowed on public interface.
Default Standard VPNs foundDisplays the default Standard VPNs found for the flow.
WAN to LAN flow VPN path to site preservedDisplays the WAN to LAN flow VPN path to site preserved for the flow.
WAN to LAN flow MPLS path type preservedDisplays the WAN to LAN flow MPLS path type preserved for the flow.
Path Policy Backup Path, Backup Service / DG Group Paths SelectedDisplays the Path Policy Backup Path, Backup Service / DG Group paths selected for the flow.
Path Policy Backup Path, Active Service / DG Group Paths SelectedDisplays the Path Policy Backup Path, Active Service / DG Group paths selected for the flow.
Path Policy Active Path, Backup Service / DG Group Paths SelectedDisplays the Path Policy Active Path, Backup Service / DG Group paths selected for the flow.
Path Policy Active Path, Active Service / DG Group Paths SelectedDisplays the Path Policy Active Path, Active Service / DG Group paths selected for the flow.
Path Policy Backup Path, Backup Service / DG Group Paths FoundDisplays the Path Policy Backup Path, Backup Service / DG Group paths found for the flow.
Path Policy Backup Path, Active Service / DG Group Paths FoundDisplays the Path Policy Backup Path, Active Service / DG Group paths found for the flow.
Path Policy Active Path, Backup Service / DG Group Paths FoundDisplays the Path Policy Active Path, Backup Service / DG Group paths found for the flow.
Path Policy Active Path, Active Service / DG Group Paths FoundDisplays the Path Policy Active Path, Active Service / DG Group paths found for the flow.
Reachable over VPN, disallow direct internetDisplays the flows which are reachable over VPN and disallow direct internet.
Enterprise prefix Public Direct disallowedDisplays the Enterprise prefix Public Direct disallowed for the flow.
Non-Enterprise prefix PWAN disallowed by configDisplays the Non-Enterprise prefix PWAN disallowed by config for the flow.
Non-Enterprise prefix VPN disallowed by configDisplays the Non-Enterprise prefix VPN disallowed by config for the flow.
App Perf Bad Path ChosenDisplays the App perf bad path chosen for the flow.
App SLA Compliant Path SelectedDisplays the App SLA Compliant (good/ok)Path Selected
Private VPN PathDisplays the Private VPN Path for the flow.
Allowed private VPNDisplays the Allowed private VPN for the flow.
Policy allowed private VPNDisplays the policy allowed private VPN for the flow.
Path(s) filtered due to L3 Reachability DownDisplays the Path(s) filtered due to L3 Reachability Down for the flow.
Direct private WAN used since both active and backup paths were unusableDisplays the Direct private WAN used since both active and backup paths were unusable for the flow.
Backup path in the network policy selectedDisplays the Backup path in the network policy selected for the flow.
Active path in the path policy selectedDisplays the Active path in the path policy selected for the flow.
App Reachability Detection Removed One Or More PathsDisplays the App Reachability detection removed one Or more paths for the flow.
One Or More Paths Violated A Performance Policy LQM RuleDisplays the one or more Paths violated a performance policy LQM rule for the flow.
Detected asymmetry has been automatically correctedDisplays the detected asymmetry has been automatically corrected for the flow.
New Flow DetectedDisplays the new flow detected.
Select WAN path downDisplays the select WAN path down for the flow.
Select WAN path upDisplays the select WAN path up for the flow.
App_id, dest IP and dest portDisplays the App_id, destination IP and destination port for the flow.
App_id, src IP and src portDisplays the App_id, source IP and source port for the flow.
App_id and dest portDisplays the App_id and destination port for the flow.
App_id and src portDisplays the App_id and source port for the flow.
App_id and dest IPDisplays the App_id and destination IP for the flow.
App_id and src IPDisplays the App_id and source IP for the flow.
Path Policy Permits Public VPN PathDisplays the Path Policy Permits Public VPN Path for the flow.
Path Policy Permits Private Direct PathDisplays the Path Policy Permits Private Direct Path for the flow.
Path Policy Permits Public Direct PathDisplays the Path Policy Permits Public Direct Path for the flow.
Policy name constraint specifiedDisplays the Policy name constraint specified for the flow.
Name constraint specifiedDisplays the name constraint specified for the flow.
HUB VPNs foundDisplays the data center (hub) VPNs found for the flow.
Policy allows asymmetryDisplays the allowed policy asymmetry for the flow.
Private direct safe useDisplays the Private direct safe use for the flow.
Strict Path Affinity Configured in App DefinitionDisplays the strict Path Affinity configured in App definition for the flow.
Strict Path Affinity FollowedDisplays the strict Path Affinity followed for the flow.
SLA criteria specifiedDisplays the SLA criteria specified for the flow.
BW One wan pathDisplays the bandwidth one WAN path for the flow.
BW secondary flowDisplays the bandwidth secondary flow for the flow.
Preferred path specifiedDisplays the preferred path specified for the flow.
BW preferred pathDisplays the bandwidth preferred path for the flow.
BW bulk preferred pathDisplays the bandwidth bulk preferred path for the flow.
Preferred path followedDisplays the preferred path followed for the flow.
31 : "Public direct path"Displays the public direct path for the flow.
Public VPN pathDisplays the public VPN path for the flow.
Private direct pathDisplays the private direct path for the flow.