Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
memo44
New Contributor

Created on ‎04-14-2013 07:58 AM

monitor and kill sessions

Hi guys, I' m monitoring my sessions and I can see that I have too many active sessions. My two questions are: 1- how can I kill a session (in general)? I tried clicking on the delete button on the session monito, but it doesn' t work. any cli command? 2- one of the sessions Im concern about, is a web console connection. Why there is more than 20 sessions for the web console (im connected remotely from the wan) As you can see on the screen shot, my ip address (50....45) has like 20 connections and I only have one web browser open to the web console. thanks for your help.
Preview file
138 KB
66687
0 Kudos
5 REPLIES 5
Robert_Cerny
New Contributor II

Created on ‎04-24-2013 12:40 AM

Hi, you can limit session TTL but I don' t think you can actually delete a session. It' s not surprising that you have more than one opened session from your browser to a single web page - it' s the way how browsers work nowadays to speed up page loading.
FG-100C FG-100A FW-50B FG-60C
FG-100C FG-100A FW-50B FG-60C
13153
0 Kudos
memo44
New Contributor

Created on ‎04-25-2013 06:33 AM

Thanks for the reply, I understand about multiple connections to a site, but more that 30 connections to the forti dashboard web console seems a little too much.
13152
0 Kudos
rwpatterson
Valued Contributor III
In response to memo44

Created on ‎04-25-2013 10:17 AM

Each time you refresh the page it adds more.

Bob - self proclaimed posting junkie!
See my Fortigate related scripts at: http://fortigate.camerabob.com

Bob - self proclaimed posting junkie!See my Fortigate related scripts at: http://fortigate.camerabob.com
13153
0 Kudos
billp
Contributor

Created on ‎04-25-2013 01:27 PM

This KB doc shows you how to kill sessions via the CLI: http://kb.fortinet.com/kb/microsites/search.do?cmd=displayKC&docType=kc&externalId=FD31635&sliceId=1... It' s also possible to limit sessions using a DOS policy, but this is only useful if you have a workstation generating many hundreds of sessions that are impacting the firewall' s performance.

Bill ========== Fortigate 600C 5.0.12, 111C 5.0.2 Logstash 1.4.1

Bill ========== Fortigate 600C 5.0.12, 111C 5.0.2 Logstash 1.4.1
13153
0 Kudos
ede_pfau
SuperUser
SuperUser

Created on ‎04-26-2013 11:28 AM

Nice post Bill. I was just too lazy to write it all down. But frankly, I wouldn' t mind a few hundred sessions on that box. 99% of them are idle anyway.
Ede Kernel panic: Aiee, killing interrupt handler!
Ede Kernel panic: Aiee, killing interrupt handler!
13153
0 Kudos
Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.