FYI: the INIT state is when a session is being built up: when a syn packet is received but a session has not been created yet, it is in an init state, then transitions into opening state (this is common ion case of SYN cookies where the initialting SYN packet is not accespted for session creation until the cookie is satisfied). When a session is being closed (because a FIN packet was received for example) the session will transition from active > closing > discard > closed > free
A session in the INIT state is part of the free pool and can be used at any time. The session may been used previously, but has now been returned back into the free pool.
Hello Very nice explanation Thank you very much I have a query in application identification it check for security policy. If we are using NAT then policy check happen for original packet or translated packet . As per my understanding in slow path it check for original packet.
Let's say -> I have connectivity from internal network 10.1.1.0/24 to 100.1.2.0/24(Inside to external zone), The requirement is to NAT the internal network with SNAT subnet - 100.1.1.0/24. Can I know what will be the NAT policy and what will be the security policy, please ?.
