R3721-F3210-F3171-HP High-End Firewalls Access Control Command Reference-6PW101
32
Parameters
vd-name vd-name: Displays the relationship table entries of the specified virtual device. The vd-name
argument specifies the name of a virtual device. It is a case-insensitive string of 1 to 20 characters, which
can be numerals, letters and underlines.
|: Filters command output by specifying a regular expression. For more information about regular
expressions, see Getting Started Guide.
begin: Displays the first line that matches the specified regular expression and all lines that follow.
exclude: Displays all lines that do not match the specified regular expression.
include: Displays all lines that match the specified regular expression.
regular-expression: Specifies a regular expression, a case-sensitive string of 1 to 256 characters.
Description
Use display session relation-table to display relationship table entries.
With no virtual device specified, the command displays the relationship table entries of all virtual
devices.
Examples
# Displays all relationship table entries.
<Sysname> display session relation-table
Local IP/Port Global IP/Port MatchMode
192.168.1.22/99 10.153.2.22/99 Local
APP:QQ Pro:UDP TTL:2000s AllowConn:10
Local IP/Port Global IP/Port MatchMode
192.168.1.100/99 10.153.2.100/99 Local
APP:FTP Pro:TCP TTL:2000s AllowConn:10
Total find: 2
Table 14 Command output
Field Descri
p
tion
Local IP/Port
IP address/port number of the inside network
Global IP/Port
IP address/ port number of the outside network
MatchMode
Match mode from session table to relationship table, including Local, Global, and
Either.
• Local: Indicates that the source IP address/source port of a new session are
matched against Local IP/Port in the relation table.
• Global: Indicates that the destination IP address/destination port of a new
session are matched against Global IP/Port in the relation table.
• Either: Indicates that the IP/port of a new session are matched against Local
IP/Port or Global IP/Port in the relation table.
App
Application layer protocol, FTP, MSN, or QQ
Pro
Transport layer protocol, TCP, or UDP
TTL
Remaining lifetime of the relationship table entry, in seconds.
AllowConn
Number of sessions allowed by the relationship table entry