3Com Switch 8800 Family Firewall Module Configuration and Command Reference Guide
314 CHAPTER 18: FIREWALL CONFIGURATION COMMANDS
Related command: firewall session aging-time and firewall session
aging-time default.
Example
# Display the session timeout values of all firewall protocols.
[SecBlade_FW] display firewall session aging-time
NAT aging-time value information:
tcp ---- aging-time value is 240 (seconds)
udp ---- aging-time value is 40 (seconds)
icmp ---- aging-time value is 20 (seconds)
finrst ---- aging-time value is 10 (seconds)
syn ---- aging-time value is 5 (seconds)
fragment ---- aging-time value is 5 (seconds)
h.323 ---- aging-time value is 600 (seconds)
ftp ---- aging-time value is 600 (seconds)
ras ---- aging-time value is 600 (seconds)
http ---- aging-time value is 240 (seconds)
smtp ---- aging-time value is 40 (seconds)
rtsp ---- aging-time value is 240 (seconds)
telnet ---- aging-time value is 240 (seconds)
netbios ---- aging-time value is 240 (seconds)
display firewall session
table
Syntax
display firewall session table
View
Any view
Parameter
None
Description
Use the display firewall session table command to display the session tables of
the firewall.
The display firewall session table command and the display aspf session
command display different session tables with different default aging time. A data
flow may be present in the ASPF session table but aged out and removed from the
session table of the firewall, or the data flow may be present in the session table
of the firewall but aged out and removed from the ASPF session table.
A firewall session enters the timeout state once it is aged out. A time interval
elapses before a session in timeout state is removed. This time interval varies
depending on actual networking.
Example
# Display the session tables of the firewall.
[Quiddway] display firewall session table
Total session number: 12
HTTP:192.168.4.1:80<--192.168.4.8:3391
HTTP:192.168.4.1:80<--192.168.4.8:3392
HTTP:192.168.4.1:80<--192.168.4.8:3387