Tag: debug

Debugging on a Checkpoint

1) Prepare the debug: [Expert@FW]# fw ctl debug 0  —This defaults (clears) all the kernal debugging options [Expert@FW]# fw ctl debug -buff 32000  —This is the buffer that the kernel users to store debugging messages [Expert@FW]# YOUR DEBUG FILTER HERE 2) Verify the debug [Expert@FW]# fw ctl debug -m fw 3) Start and write the debug to…




Fortigate VPN Troubleshooting

Use the following commands to check the Phase1/Phase2 configuration: show vpn ipsec phase1-interface edit “NAME_OF_VPN_P1” set interface “INTERNEToutside set proposal aes256-sha256 set remote-gw 1.2.3.4 set psksecret ENC next show vpn ipsec phase2-interface edit “NAME_OF_VPN_P2” set dst-addr-type name set phase1name “NAME_OF_VPN_P1” set proposal aes256-sha1 set replay disable set src-addr-type name set dst-name “NETWORK_DST_10.1.1.0/23” set keylifeseconds 28800…




Juniper SRX Debugging

From configuration mode, create the debug edit security flow traceoptions set file NAME-OF-FILE set packet-filter Packet-Filtername source-prefix x.x.x.x/xx destination-prefix x.x.x.x/x destination-port xxx set flag basic-datapath To check the traceoption… show security flow traceoptions To activate the traceoption… activate security flow traceoptions Commit and save the configuration commit check commit From operational mode, check the output…