No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search


To have a better experience, please upgrade your IE browser.

Knowledge Base

FAQ-How does USG series firewall check the aging session table

Publication Date:  2012-12-05  |   Views:  257  |   Downloads:  0  |   Author:  c00222574  |   Document ID:  EKB1000020799


Issue Description

In the application that need the session quantity counting(such as firewall connection quantity limit function), because the corresponding session counting will not reduce when the middle and low end usg series firewall session eging. so the practical application session quantity is the current session and aging, but it is the session sum that was not deleted from memory. the current session can be viewed by display firewall session table,how to check the aging session table that was not in memory?

Alarm Information


Handling Process

Add the timeout parameter when checking session,it can check the aging session table:
display firewall session table verbose timeout
it can add the following session:
display firewall session table verbose timeout high-priority inside X.X.X.X low-priority global X.X.X.X

Root Cause



Display firewall session table session quantity adding display firewall session table verbose timeout session quantity,that is current firewall session counting value.