Sessions
From Edge Threat Management Wiki - Arista
Sessions provides a view of the current sessions (also known as connections)
Each row represents a single a network session/and its properties.
As Untangle and all the apps learn more about a session, many will "attach" data to the session so it is globally visible and accessible via other apps. The Sessions view provides a view into everything that is known about a session.
The Sessions view provides a real-time view into whats going on in the network, and can also provide a great debugging tool to verify that sessions are being processed by the correct policies and handled correctly.
Column Header Property Description Protocol The protocol of the session (TCP or UDP) Bypassed True if this session is bypassed (not scanned) Priority Priority assigned to this session (by Banwidth Control and/or QoS) Policy The policy or rack handling this session (if not bypassed) Client Interface The interface of the client of this session Client (Pre-NAT) The client IP of this session Server (Pre-NAT) The server IP of this session Client Port (Pre-NAT) The client port of this session (0-65535) Server Port (Pre-NAT) The server port of this session (0-65535) Server Interface The interface of the server of this session Client (Post-NAT) The client IP of this session (after NAT and port forwards) Server (Post-NAT) The server IP of this session (after NAT and port forwards) Client Port (Post-NAT) The client port of this session (after NAT and port forwards) Server Port (Post-NAT) The server port of this session (after NAT and port forwards) Local True if this session is to the Untangle Server itself NATd True if this session has been NAT translated. Port Forwarded True if this session has been port forwarded.
Note: This tools only shows existing sessions. As such very short lived sessions will not be visible.