No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search

Reminder

To have a better experience, please upgrade your IE browser.

upgrade
Knowledge Base

FAQ-How does USG series firewall check the aging session table

Publication Date:  2012-12-05  |   Views:  257  |   Downloads:  0  |   Author:  c00222574  |   Document ID:  EKB1000020799

Contents

Issue Description

Q
In the application that need the session quantity counting(such as firewall connection quantity limit function), because the corresponding session counting will not reduce when the middle and low end usg series firewall session eging. so the practical application session quantity is the current session and aging, but it is the session sum that was not deleted from memory. the current session can be viewed by display firewall session table,how to check the aging session table that was not in memory?

Alarm Information

NULL

Handling Process

A:
Add the timeout parameter when checking session,it can check the aging session table:
display firewall session table verbose timeout
it can add the following session:
display firewall session table verbose timeout high-priority inside X.X.X.X low-priority global X.X.X.X

Root Cause

NULL

Suggestions

Display firewall session table session quantity adding display firewall session table verbose timeout session quantity,that is current firewall session counting value.