R3166-R3206-HP High-End Firewalls Access Control Command Reference-6PW101
21
display session relation-table
Syntax
display session relation-table [ vd-name vd-name ]
View
Any view
Default level
2: System level
Parameters
vd-name vd-name: Displays the relationship table entries of the specified virtual device. The vd-name
argument specifies the name of a virtual device. It is a case-insensitive string of 1 to 20 characters, which
can be numerals, letters and underlines.
Description
Use the display session relation-table command to display relationship table entries.
With no virtual device specified, the command displays the relationship table entries of all virtual
devices.
Examples
# Displays all relationship table entries.
<Sysname> display session relation-table
Local IP/Port Global IP/Port MatchMode
192.168.1.22/99 10.153.2.22/99 Local
APP:QQ Pro:UDP TTL:2000s AllowConn:10
Local IP/Port Global IP/Port MatchMode
192.168.1.100/99 10.153.2.100/99 Local
APP:FTP Pro:TCP TTL:2000s AllowConn:10
Total find: 2
Table 8 Output description
Field Descri
p
tion
Local IP/Port
IP address/port number of the inside network
Global IP/Port
IP address/ port number of the outside network
MatchMode
Match mode from session table to relationship table, including Local, Global, and
Either.
• Local: Indicates that the source IP address/source port of a new session are
matched against Local IP/Port in the relation table.
• Global: Indicates that the destination IP address/destination port of a new
session are matched against Global IP/Port in the relation table.
• Either: Indicates that the IP/port of a new session are matched against Local
IP/Port or Global IP/Port in the relation table.
App
Application layer protocol, FTP, MSN, or QQ
Pro
Transport layer protocol, TCP, or UDP
TTL
Remaining lifetime of the relationship table entry, in seconds.