> show session all filter source 10.123.0.5
> show counter global filter delta yes packet-filter yes
> set cli timeout idle never
> debug dataplane packet-diag show filter-marked-session
> debug dataplane packet-diag clear filter-marked-session all
> show session all filter destination 118.xx.xx.xx
> show session id 43122
> show session all filter source 10.123.3.15
> show session all filter source 10.123.3.15 destination-port 5222
> show session all filter source 10.123.3.15 protocol 1
> show session all filter source 10.123.3.15 protocol 17
> show session all filter source 10.123.3.15 destination-port 5222
> show session all filter source 10.123.3.15 destination-port 5222
> show session all filter source 10.123.3.15 destination-port 443 application ssl
> show session all filter source 10.123.3.15 destination-port 443 application ssl nat source
> show running resource-monitor second last 60
> show running resource-monitor minute last 4
> show session all filter destination 40.76.195.115
> show counter global filter delta yes
> show counter global filter delta yes packet-filter yes
> debug dataplane packet-diag show filter-marked-session
> show session all filter source
> show session all filter source 192.168.249.142
> show session all filter source 10.123.3.15Refresh users. Newly added active directory users not appearing on the firewall
### Show list
show user group list
show user group name cn=xxx_gp_vpn,ou=xxx_groups,ou=company,dc=xxx-sin,dc=com
### Refresh
debug user-id refresh group-mapping all
### Reset
debug user-id reset group-mapping all