Terminate connections manually

In the Connections view, you can manually terminate any current connection.

For example, you can remove an inactive connection that has not been properly closed. Terminating an open connection alone does not prevent any new connection from opening again.

You can terminate connections manually on the following types of engines and interfaces:

  • Layer 3 physical interfaces on Firewalls
  • Inline Interfaces on Firewalls, IPS engines, and Layer 2 Firewalls
Note: You cannot terminate connections manually on Capture Interfaces on Firewalls, IPS engines, or Layer 2 Firewalls.

  For more details about the product and how to configure features, click Help or press F1.

Steps

  1. Right-click an NGFW Engine, then select Monitoring > Connections.
  2. Select one or more connections in the table.
  3. Right-click a selected row, then select Terminate.

Connections view

Use this view to monitor connections.

Option Definition
Toolbar
Save Column Settings Saves the current column selection.
Play Shows current entries.
Pause Creates a temporary snapshot of entries.
Stop Aborts the running query.
Save Saves a snapshot of entries.
Statistics menu Shows the monitored data as charts. Select one of the predefined statistical items or select Select to create a custom statistical item.
Tools menu
Columns
  • Column Selection — Opens the Column selection dialog box.
  • Reset to Default Settings — Discards changes to the column selection and reverts to the previously saved default settings.
Text Size Increases or decreases the text size.
Time Zones Allows you to select the time zone for viewing entries.
Show Milliseconds When selected, the time stamp of entries includes milliseconds.
Use Color Filters When selected, entries are shown using color filters.
Show Icons When selected, element icons are shown in entries.
Resolve Addresses by DNS When selected, IP addresses in entries are resolved using DNS.
Resolve Addresses by Elements When selected, element names are shown instead of IP addresses.
Resolve Senders When selected, the name of the NGFW Engine is shown in the Sender column instead of the IP address of the NGFW Engine.
Option Definition
Connections table — Several menu options are available when you select a log entry and right-click.
Show Referenced Events View more information about related log events.
New Blacklist Entry Opens the Blacklist Entry Properties dialog box, where you can blacklist a connection manually.
Terminate Terminates a connection in the Connections view.
Option Definition
Query pane
Filter tab
New
  • Select — Opens the Select Filter dialog box.
  • New — Select the type of new filter to create. The Filter Properties dialog box opens.
  • Row — Adds an empty row to the Filters table.
Save Opens the Filter Properties dialog box that allows you to save the current filtering criteria as a permanent Filter element.
Snapshots tab Allows you to compare snapshots of entries. The names of the snapshots selected for comparison are shown in two separate fields.

Current compares the current entries with a previously saved snapshot. Current is only available if the view is in the Current Events mode.

If you click Pause in the toolbar a temporary snapshot of the current entries is selected as the first snapshot for comparison.

Select Opens the Select Element dialog box, where you can select a previously saved snapshot as the first snapshot for comparison.
Compare with Select to compare snapshots.
Second field Shows the second snapshot selected for comparison.
Select Opens the Select Element dialog box, where you can select a previously saved snapshot as the second snapshot for comparison.
Apply Applies your changes.
Option Definition
Fields pane
Category drop-down list
  • Watchlist — Allows you to create a customized list of fields to show in entries.
  • All — Allows you to view all fields in entries.
Field The name of the field.
Value The value in the field.