The blog provides Network Security Tips, Tricks, How To/Procedures. Products and areas not limited to Firewalls, Security, Check Point, Cisco, Nokia IPSO, Crossbeam, SecurePlatform, SPLAT, IP Appliance, GAiA, Unix/Linux.
Home / Check Point / Firewall / Check Point - View Aggressive Aging Status

Check Point - View Aggressive Aging Status

,
A device may enter Aggressive Aging when running low on memory. Aggressive aging causes idle connections to timeout much sooner (For example: 60 seconds instead of 60 minutes). Aggressive aging status can be viewed using "fw ctl pstat" command.

Syntax:

fw ctl pstat


Example 1: Aggressive Aging is not active

 CheckPoint-Firewall-1>
CheckPoint-Firewall-1> fw ctl pstat

System Capacity Summary:
  Memory used: 10% (906 MB out of 8995 MB) - below watermark
  Concurrent Connections: 14711 (Unlimited)
  Aggressive Aging is not active
.......
...........
................
Example 2: Aggressive Aging is Active

 CheckPoint-Firewall-1>
CheckPoint-Firewall-1> fw ctl pstat

System Capacity Summary:
  Memory used: 90% (900 MB out of 1000 MB) - below watermark
  Concurrent Connections: 2000 (Unlimited)
  Aggressive Aging is active
.......
...........
................
Check Point - View Aggressive Aging Status Check Point - View Aggressive Aging Status Reviewed by Admin on 14:29:00 Rating: 5