FAQ-What Are the Meanings of Contents in the Session Table

Publication Date:  2015-07-01 Views:  174 Downloads:  0
Issue Description
What Are the Meanings of Contents in the Session Table?
Solution
The session table of the USG is displayed as follows:

zone: dmz -> trust  //The source zone of the first packet is dmz, and the destination zone is trust (source zone -> destination zone)
ttl: 00:20:00  left: 00:19:43 //ttl indicates session aging time, and left indicates the remaining time before the session ages.
Interface: E1  Nexthop: 10.0.0.145  Mac: 00-00-5e-00-01-0f //The outbound interface, next-hop IP address, and MAC address of the first packet
<-- packets:686 bytes:50264   --> packets:500 bytes:40828  //<--indicates the numbers of bytes and packets in the inbound direction of the session, and --> indicates the numbers of bytes and packets in the outbound direction/intrazone
121.14.74.21:14000<--10.252.204.111:16503 //<-- indicates that the direction of the first packet is inbound, and --> indicates that the direction of the first packet is outbound or the session is an intrazone session.
The direction of the arrow is the direction of packets.


1. The following 10 packets are collected in the direction from 172.16.10.1 to 172.16.0.96.

udp  VPN: public -> public                                                                                                        
  Zone: trust -> untrust  TTL: 00:02:00  Left: 00:01:59                                                                             
  Interface: G2/0/1  Nexthop: 172.16.0.96  MAC: 00-00-00-00-00-00                                                                   
  <-- packets:0 bytes:0   --> packets:10 bytes:5636                                                                                 
  172.16.10.1:1517-->172.16.0.96:1231  


2. The following five packets are collected in the direction from 172.16.1.26 to 172.16.10.22.

udp  VPN: public -> public                                                                                                        
  Zone: untrust -> trust  TTL: 00:02:00  Left: 00:02:00                                                                             
  Interface: G2/0/0  Nexthop: 172.16.10.22  MAC: 00-00-00-00-00-00                                                                  
  <-- packets:5 bytes:7930   --> packets:0 bytes:0                                                                                  
  172.16.10.22:1517<--172.16.1.26:48988 

END