Refer to the exhibit, which shows the partial output of a diagnose command. Which two conclusions can you draw from the output shown in the exhibit? (Choose two.)
A.
FortiGate will drop the expected traffic if it does not arrive within 23 seconds.
B.
Clearing the master session has no impact on the expectation session.
C.
This is a pinhole session to allow traffic for a TCP protocol that dynamically assigns TCP ports.
D.
The session is checked against firewall policy ID 25.
You can also see that FortiGate created an expectation session and opened the pin-hole port for the
expected return traffic from the server with the IP address 93.157.14.94.
Pagina 115
duration: duration of the session (value in seconds).
expire: a countdown from the 'timeout' since the last packet passing via session (value in seconds).
timeout: an indicator of how long the session can stay open in the current state (value in seconds).
*shaper: the traffic shaper profile info (if traffic shaping is utilized).
policy_dir: 0 original direction | 1 reply direction.
tunnel: VPN tunnel name.
helper: name of the utilized session helper.
vlan_cos: Ingress COS values are displayed in the session output in the range 0-7/255, but admin COS values are displayed in the range 8-15/255 even though the value on the wire will be in the range 0-7. When no COS is utilized the value is 255/255.
state: See the table below for a list of states and what is the meaning.
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
IBB90704
2 months, 2 weeks ago