The firewall log session half-connection enable command enables the function of sending half-connection session logs to log hosts.
The undo firewall log session half-connection enable command disables the function of sending half-connection session logs to log hosts.
Half-open session logs record information about connections for which TCP three-way handshake is not complete. You can analyze whether the device is attacked based on the number of existing half-open sessions as well as the source and destination IP addresses to facilitate source tracing.
By default, the function of sending half-connection session logs to log hosts is disabled.