What does this mean?

You run the command fwaccel conns and notice in the output that all the connections have
“F” in the “flags” column, see below: What does this mean?

You run the command fwaccel conns and notice in the output that all the connections have
“F” in the “flags” column, see below: What does this mean?

A.
Connections are being “forward to firewall” (“f2f”).

B.
Connections are being “forwarded” to the accelerating engine.

C.
Connections are accelerated (“fastpath”).

D.
Connections have the fragment flag set.

Explanation:



Leave a Reply 1

Your email address will not be published. Required fields are marked *


Cris

Cris

Firewall path / Slow path (F2F) – Packet flow when the SecureXL device is unable to process the packet (refer to sk32578 – SecureXL Mechanism). The packet is passed on to the CoreXL layer and then to one of the Core FW instances for full processing. This path also processes all packets when SecureXL is disabled.

F2F / F2Fed – Packets that can not be accelerated by SecureXL (refer to sk32578 – SecureXL Mechanism) are Forwarded to Firewall.