Troubleshooting guide
Appendix A: State Tables for VPN-1/FireWall-1 4.0 General tables
Advanced Technical Reference Guide 4.1 • June 2000 143
General tables
connections table
The connections table contains data on all active connections.
Example
attributes: refresh, expires 60, expcall 133279992 4, implies 2, kbuf 1,
hashsize 8192
<c7cb4764, 0000008a, c7cb47ff, 00000000, 00000011; 00000000, 00000002,
00000000; 39/40>
<c7cb4765, 0000008a, c7cb47ff, 00000000, 00000011; 00000000, 00000002,
00000000; 37/40>
The connections table uses the following format:
Field Example value Description
1.
c7cb4764
source IP address
2.
0000008a
source port
3.
c7cb47ff
destination IP address
4.
00000000
destination port
5.
00000011
IP protocol
6.
00000000
r_ckey.
This field is a pointer to the encryption key if the connection is encrypted, otherwise
it is NULL
7.
00000002
r_ctype. Described below
8.
00000000
r_cflags. Described below
9.
39/40
time left/total time. There are x of y seconds left until the entry times out and is
deleted from the table
r_ctype
The r_ctype field contains eight hexadecimal digits in the form 0000klmn. The last four digits of the value are
interpreted using the tables below.
Value of ‘n’ Description
1 TCP connection
2 UDP connection
3 Connection is encrypted
4 Reverse connection is encrypted
Value of ‘m’ Description
0 Other
8 IPSec connection