The session table of the USG is displayed as follows:
zone: dmz -> trust //The source zone of the first packet is dmz, and the destination zone is trust (source zone -> destination zone)
ttl: 00:20:00 left: 00:19:43 //ttl indicates session aging time, and left indicates the remaining time before the session ages.
Interface: E1 Nexthop: 10.0.0.145 Mac: 00-00-5e-00-01-0f //The outbound interface, next-hop IP address, and MAC address of the first packet
<-- packets:686 bytes:50264 --> packets:500 bytes:40828 //<--indicates the numbers of bytes and packets in the inbound direction of the session, and --> indicates the numbers of bytes and packets in the outbound direction/intrazone
121.14.74.21:14000<--10.252.204.111:16503 //<-- indicates that the direction of the first packet is inbound, and --> indicates that the direction of the first packet is outbound or the session is an intrazone session.
The direction of the arrow is the direction of packets.
1. The following 10 packets are collected in the direction from 172.16.10.1 to 172.16.0.96.
udp VPN: public -> public
Zone: trust -> untrust TTL: 00:02:00 Left: 00:01:59
Interface: G2/0/1 Nexthop: 172.16.0.96 MAC: 00-00-00-00-00-00
<-- packets:0 bytes:0 --> packets:10 bytes:5636
172.16.10.1:1517-->172.16.0.96:1231
2. The following five packets are collected in the direction from 172.16.1.26 to 172.16.10.22.
udp VPN: public -> public
Zone: untrust -> trust TTL: 00:02:00 Left: 00:02:00
Interface: G2/0/0 Nexthop: 172.16.10.22 MAC: 00-00-00-00-00-00
<-- packets:5 bytes:7930 --> packets:0 bytes:0
172.16.10.22:1517<--172.16.1.26:48988
