Number of Active Sessions Does Not Reach the Maximum Number of Sessions Supported

Number of Active Sessions Does Not Reach the Maximum Number of Sessions Supported

0
Created On 09/26/18 13:49 PM - Last Modified 07/19/22 23:09 PM


Resolution


Symptom

The number of active sessions does not reach the maximum number of sessions supported.

For example, on a PA-5050 running PAN-OS 6.1:

> show session info

------------------------------------------------------------

Number of sessions supported: 2000000

Number of active sessions: 1998978

Number of active TCP sessions: 1998978

------------------------------------------------------------

 

Cause

On the Palo Alto Networks firewall, 1024 sessions are reserved for inline management sessions. This includes connections to the firewall such as ping, ssh,and L3 interface access through https.

 

> show system state filter cfg.general.max-session

cfg.general.max-session: 2000002

 

In the above example, 2000002 - 1998978 = 1024, which is the number of sessions reserved for inline mgmt session.

 

owner: ymiyashita
Other users also viewed:
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClrACAS&lang=en_US&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail