User`s guide
387
Firewall
Management-Network Status> Firewall
This page displays the current Firewall statistics and the Firewall Stateful Inspection table.
Passed Packets
The number of packets the firewall has passed.
Blocked Packets
The number of packets the firewall has blocked.
Logged Packets
The number of packets the firewall has logged.
Stateful Packets
The number of packets that have matched a stateful rule.
Undersized Packets
The number of packets received by the firewall that are too small.
Oversized Packets
The number of packets received by the firewall that are too large.
Return TCP RST
The number of times the firewall has returned a TCP Reset packet.
Return ICMP
The number of times the firewall has returned an ICMP packet.
Stateful rule shortages
The number of times there has been a shortage of entries stateful inspection table.
HASH table errors
The number of times there has been a hashing error when looking into the stateful
inspection table.
In use stateful rules reused
The number of times an in-use stateful inspection table has been reused.
Firewall Stateful Inspection Table
The Firewall Stateful Inspection table is a sophisticated scripted “Stateful Firewall” and
“Route Inspection” engine. Stateful inspection is a powerful tool that allows the unit to keep
track of a TCP/UDP or ICMP session and match packets based on the state of the connection
on which they are being carried.
The table contains a list of dynamic firewall rules that have been created when packets have
matched a configured firewall with the inspect-state keyword specified.
For more information on the inspect-state keyword, see “Stateful Inspection” in the
Firewall section.
TTL
The number of seconds for the table entry to live. When this reaches zero, the entry is
removed from the table.