20 Questions
Which command displays the total number of sessions in an active V-Dom?
get sys session status
What information is included in the session list command?
Source IP-address, destination IP-address, and port
What is the recommended step before displaying detailed information about sessions?
Set the session filter
How can you list only the sessions for a specific IP-address using the session list command?
Use the 'grep' utility
What can happen if you display all details about all existing sessions on high-end devices?
The device may slow down
Which changes apply only to new sessions?
Security profile changes
What command can you use to display detailed information about sessions?
diagnose sys session list
What can you filter the output by when displaying detailed information about sessions?
Policy ID, source port, and destination port
What command can you use to clear the session filter?
diagnose sys session filter clear
What should you do if you want changes to apply to new sessions only?
Clear existing sessions
Which of the following commands should be used to remove all sessions that match the session filter?
diagnose sys session clear
What happens to existing sessions when a security profile change is made?
Existing sessions keep using the previous configuration until they expire or are terminated.
Why is it important to clear sessions related to a security profile change?
To ensure that the new security profile is applied to all sessions.
What should be done before clearing out any sessions?
Use appropriate filters to ensure that only the desired sessions are cleared.
What information is highlighted in the FortiGate session table from left to right, and from top to bottom?
IP protocol number and protocol state, length of time until the session expires, and traffic shaping counters.
What does the first digit of the protocol state value in the session table represent for TCP sessions?
The server-side state.
What is the second digit of the protocol state value in the session table for TCP sessions?
The client-side state.
What is the value of the second digit of the protocol state value when FortiGate receives the SYN packet in a TCP session?
2
What is the state value of a session when it is closed by both sides?
5
What should be done before using the 'diagnose sys session clear' command?
Use appropriate filters to ensure that only the desired sessions are cleared.
Test your knowledge of FortiGate session table with this quiz! Learn about the commands to display the total number of sessions and view a summary of each session. Challenge yourself to understand the session list command and its output.
Make Your Own Quizzes and Flashcards
Convert your notes into interactive study material.
Get started for free
