Hi
What does the field "NONE state" means in the output of "diag sys session stat"?
# diagnose sys session stat misc info: session_count=88202 setup_rate=824 exp_count=425 clash=66742 memory_tension_drop=0 ephemeral=0/1114112 removeable=0 delete=0, flush=0, dev_down=0/0 TCP sessions: 429 in NONE state
Thank you.
Kind regards,
Tom
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Hi
No..., unfortunately not.
Regards,
Tom
Hey guys,
the NONE state is mentioned for all ICMP connections (because they don't have ESTABLISHED, SYN SENT or something like that).
More details here:
Copy & Paste of the relevant information: http://kb.fortinet.com/kb/documentLink.do?externalID=FD30042
Proto_state field for ICMP (proto 1) There are no states for ICMP, it always show proto_state=00
Kind regards
It means exactly that , NONE exist { tcp sessions }. The firewall and that fields are typically shows your TCP stated not ICMP so it should be populated with
NONE
ESTABLISHED state
TIME_WAIT state
etc
It has nothing todo with icmp since ICMP is stateless the same for UDP
Ken
PCNSE
NSE
StrongSwan
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1502 | |
1013 | |
749 | |
443 | |
209 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.