Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
tomtux007
New Contributor

Output of "diag sys session stat"

Hi

 

What does the field "NONE state" means in the output of "diag sys session stat"?

# diagnose sys session stat misc info:     session_count=88202 setup_rate=824 exp_count=425 clash=66742     memory_tension_drop=0 ephemeral=0/1114112 removeable=0 delete=0, flush=0, dev_down=0/0 TCP sessions:      429 in NONE state

 

Thank you.

Kind regards,

Tom   

3 REPLIES 3
tomtux007
New Contributor

Hi

 

No..., unfortunately not.

Regards,

Tom

oheigl
Contributor II

Hey guys,

 

the NONE state is mentioned for all ICMP connections (because they don't have ESTABLISHED, SYN SENT or something like that).

More details here:

Copy & Paste of the relevant information: http://kb.fortinet.com/kb/documentLink.do?externalID=FD30042

 

Proto_state field for ICMP (proto 1) There are no states for ICMP, it always show proto_state=00

 

Kind regards

emnoc
Esteemed Contributor III

 It means exactly that , NONE  exist { tcp sessions }. The firewall and that fields are typically shows your TCP stated not ICMP so it should be populated with

 

 

NONE

ESTABLISHED state

TIME_WAIT state

etc

 

 

It has nothing todo with icmp since ICMP is stateless the same for UDP

 

Ken

PCNSE 

NSE 

StrongSwan  

PCNSE NSE StrongSwan
Top Kudoed Authors