3Com Switch 8800 Family Firewall Module Configuration and Command Reference Guide
ASPF Configuration Commands 313
session table of the firewall, or the data flow may be present in the session table
of the firewall but aged out and removed from the ASPF session table.
Example
# Display information on current ASPF sessions.
[SecBlade_FW] display aspf session
[Established Sessions]
Session Initiator Responder Application Status
212BA84 169.254.1.121:1427 169.254.1.52:0 ftp-data TCP_DOWN
2B738C4 169.254.1.121:1426 169.254.1.52:21 ftp FTP_CONXN_UP
# Display detailed information of current ASPF sessions.
[SecBlade_FW] display aspf session verbose
[ Established Sessions ]
[ Session 0xC7E2B4 ]
(192.168.0.1:2125)=>(13.1.0.5:2093) h245-media-control H245_OPEN
SessNum: 229, TransProt: 6,
AppProt: 21
Prev: 0x0, Next: 0x0,
Child: 0xCA9EA4,
Parent: 0x0
SynNode: 0x0, FinNode: 0x0
Interface: GigabitEthernet0/0.2,
Direction: outbound
Bytes/Packets sent (initiator:responder) [1339/15 : 1309/12]
Tcp SeqNum/AckNum [352115193/62885460 : 62885456/352115193]
Timeout 00:02:00(120),
display firewall session
aging-time
Syntax
display firewall session aging-time
View
Any view
Parameter
None
Description
Use the display firewall session aging-time command to display the session
timeout values of all firewall protocols.
Tab le 221 Information of current ASPF sessions
Field Description
TransProt: 6 Transport layer protocol is numbered 6, which means that
TCP is used.
AppProt: 21 Application layer protocol uses port 21, which means that
the sessions are FTP sessions
Interface: GigabitEthernet0/0.1
Direction: outbound
ASPF policy is applied in outbound direction of the interface
Ethernet1/0/0
Bytes/Packets sent Bytes/Packets transmitted between the originating and
responding sides of the connection
Timeout 00:02:00(120) Timeout time set for the protocol is 120 seconds