I would like update myself because I found some solution but now I have more questions:
fw ctl conntab | grep "state=TCP_ESTABLISHED" | grep "service=https" | wc -l
I will be able to grep all the sessions for https, but question is what should I do when SecureXL is enabled ?
<(inbound, src=[10.10.10.20,62233], dest=[126.96.36.199,80], TCP); 3599/3600, rule=105, tcp state=TCP_ESTABLISHED, service=http(415), Ifncin=2, Ifncout=2, Ifnsin=1, Ifnsout=1, conn modules: SeqVerifier>
This is the sample output from my command, finding specific IP will be easy, but do you have any suggestions how can I prepare similar example with sessions connected with specific vlan ?