Output of "diag sys session stat"

Forum|Forum|8 years ago
June 23, 2017
2 replies
11433 views

Hi

What does the field "NONE state" means in the output of "diag sys session stat"?

# diagnose sys session stat misc info: session_count=88202 setup_rate=824 exp_count=425 clash=66742 memory_tension_drop=0 ephemeral=0/1114112 removeable=0 delete=0, flush=0, dev_down=0/0 TCP sessions: 429 in NONE state

Thank you.

Kind regards,

Tom

tomtux007Author

New Member

Hi

No..., unfortunately not.

Regards,

Tom

oheigl

New Member

Hey guys,

the NONE state is mentioned for all ICMP connections (because they don't have ESTABLISHED, SYN SENT or something like that).

More details here:

Copy & Paste of the relevant information: http://kb.fortinet.com/kb/documentLink.do?externalID=FD30042

Proto_state field for ICMP (proto 1) There are no states for ICMP, it always show proto_state=00

Kind regards

emnoc

New Member

It means exactly that , NONE exist { tcp sessions }. The firewall and that fields are typically shows your TCP stated not ICMP so it should be populated with

NONE

ESTABLISHED state

TIME_WAIT state

etc

It has nothing todo with icmp since ICMP is stateless the same for UDP

Ken

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded