Why does FortiGate Keep TCP sessions in the session table for several seconds, even after both sides (client and server) have terminated the session?

Why does FortiGate Keep TCP sessions in the session table for several seconds, even after both sides (client and server) have terminated the session?
A . To allow for out-of-order packets that could arrive after the FIN/ACK packets
B . To finish any inspection operations
C . To remove the NAT operation
D . To generate logs

Answer: A

Explanation:

TCP provides the ability for one end of a connection to terminate its output while still receiving data from the other end. This is called a half-close. FortiGate unit implements a specific timer before removing an entry in the firewall session table.

Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments