The display deception port-redirect command displays information about deceived traffic due to the scanning of unopened ports.
display deception port-redirect [ source-ip ip-address ] [ destination-ip ip-address ] [ destination-port port ]
| Parameter | Description | Value |
|---|---|---|
| source-ip ip-address | Specifies the source address of deceived traffic. |
The value is in dotted decimal notation. |
| destination-ip ip-address | Specifies the destination address of deceived traffic. |
The value is in dotted decimal notation. |
| destination-port port | Specifies the destination port of deceived traffic. |
The value is an integer ranging from 1 to 65535. |
If it is found that deceived traffic is normal service traffic, run the reset deception port-redirect command to delete the corresponding entry from the deception flow table to release the traffic.
# Display information about deceived traffic due to the scanning of unopened ports.
<FW> display deception port-redirect -------------------------------------------------------------------------------- Current total number = 1 -------------------------------------------------------------------------------- source destination port out-vlan vpn-instance packets left-time(s) -------------------------------------------------------------------------------- 1.1.1.1 1.1.1.2 80 0 public 0 432 --------------------------------------------------------------------------------
Item |
Description |
|---|---|
source |
Source address of deceived traffic |
destination |
Destination address of deceived traffic |
port |
Destination port of deceived traffic |
out-vlan |
VLAN of deceived traffic |
vpn-instance |
VPN instance of deceived traffic |
packets |
Number of deceived packets |
left-time(s) |
Remaining time before an entry ages The aging time is 10 minutes. If no traffic matches the entry within the aging time, the entry is deleted. If traffic matches the entry within the aging time, the aging time is updated. |