This command checkpoints
all the flows matching the Firewall-and NAT action.
Privilege:
Security Administrator,
Administrator
Syntax
flow check-point [ data-usage data_usage [ and | or ] | time-duration duration [ and | or ] ]
{ default | no } flow
check-point
default
Configures the default
Firewall action.
no
Deletes the Firewall
action configuration.
data-usage data_usage
Specifies the data usage
in bytes.
data_usage must
be an integer from 1 through 4294967295.
The maximum limit for
data-usage is 4 GB.
time-duration duration
Specifies the time duration
in seconds.
duration must
be an integer from 1 through 86400.
The maximum limit for
time-duration is 24 hours.
and | or
This option allows to
configure only data-usage or time-duration,
or a combination of data-usage and time-duration.
Usage:
Use this command to
enable/disable the check-pointing of NATed flows and control
the type of flows need to be check pointed based on specified criteria.
Check pointing is done only for TCP and UDP flows.
Example:
The following command
configures Stateful Firewall to drop packets with data-usage
5000:
flow check-point data-usage 5000