R3721-F3210-F3171-HP High-End Firewalls Access Control Configuration Guide-6PW101

ManualsBrandsHP ManualsComputer AccessoriesHP 7100/7200 IPsec dl Module

101

102

103

104

105

106

107

108

109

110

Ste

Command

Remarks

1. Enter system view.

system-view N/A

2. Specify the persistent session

rule.

session persist acl acl-number

[ aging-time time-value ]

Not specified by default.

NOTE:

• A persistent session rule can reference only one ACL.

• Only TCP sessions in ESTABLISHED state can be specified as persistent sessions.

Clearing sessions

To clear sessions:

Task Command

Remarks

Clear sessions.

reset session [ vd-name vd-name ] [ source-ip

source-ip ] [ destination-ip destination-ip ]

[ protocol-type protocol-type ] [ source-port

source-port ] [ destination-port destination-port ]

[ vpn-instance vpn-instance-name ]

Available in user

view

Displaying and maintaining session management

Task Command Remarks

Display information about sessions.

display session table [ vd-name

vd-name ] [ source-ip source-ip ]

[ destination-ip destination-ip ]

[ verbose ] [ | { begin | exclude |

include } regular-expression ]

Available in any view

Display statistics about sessions.

display session statistics [ vd-name

vd-name ] [ | { begin | exclude |

include } regular-expression ]

Available in any view

Display session relationship table

information.

display session relation-table

[ vd-name vd-name ] [ | { begin |

exclude | include }

regular-expression ]

Available in any view

Clear sessions.

reset session [ vd-name vd-name ]

[ source-ip source-ip ] [ destination-ip

destination-ip ] [ protocol-type { icmp

| raw-ip | tcp | udp } ] [ source-port

source-port ] [ destination-port

destination-port ] [ vpn-instance

vpn-instance-name ]

Available in user view

Clear session statistics (on a

centralized device).

reset session statistics [ vd-name

vd-name ]

Available in user view