Dear Minh, If you run the " fw ctl debug" you should see every dropped packet
- fw ctl debug 0 - fw ctl debug -buf 10000 (you can set the buffer up to 30.000, but be careful on a fw with high it can crash the entire system) - fw ctl debug + drop (- fw ctl debug + drop conn ld -> if you like also to see the behavior of the tables) - fw ctl kdebug -T -f > ouptfile.txt Now the debuggig is started and redirected to "output.txt". I am not sure, but I thing "asm_stateless_verifier" is Smart Defense. You has to stop the debugging with CTL+C AND don't forget "fw ctl debug 0" again. Best regards, Christian -----Ursprüngliche Nachricht----- Von: Mailing list for discussion of Firewall-1 [mailto:[EMAIL PROTECTED] Im Auftrag von Minh Quang Nguyen Gesendet: Donnerstag, 3. Juli 2008 22:07 An: [email protected] Betreff: [FW-1] Advanced troubleshooting/debugging command for dropped Smart Defence traffic that doesn't show up in Tracker? Hi Gurus, I'm calling on your vast experience to help to determine if there's any advanced CLI command (or GUI tool) to debug dropped Smart Defence traffic that doesn't show up in the tracker. As you guys know so well, especially with NGX R65, a lot of traffic is now dropped without it appearing in the tracker. I've tried playing around with inserting "fw monitor" along the firewall chain modules but wasn't able to pinpoint exactly how. Any insight would be greatly appreciated Thanks Minh ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] ================================================= Diese E-Mail kann vertrauliche oder rechtlich geschützte Informationen enthalten. Wenn Sie nicht der beabsichtigte Empfänger sind, informieren Sie bitte sofort den Absender und löschen Sie diese E-Mail. Das unbefugte Kopieren dieser E-Mail oder die unbefugte Weitergabe der enthaltenen Informationen ist nicht gestattet. The information contained in this message is confidential or protected by law. If you are not the intended recipient, please contact the sender and delete this message. Any unauthorised copying of this message or unauthorised distribution of the information contained herein is prohibited. Controlware GmbH Kommunikationssysteme Telefon: (0 60 74) 8 58-0 E-Mail: [EMAIL PROTECTED] http://www.controlware.de Sitz: 63128 Dietzenbach, Registergericht: Offenbach a.M., HRB Nr. 6431, USt.-Id.-Nr. DE 113539225 Geschäftsführung: Helmut E. Wörner (Vorsitzender), Bernd Schwefing, Hubert Potthoff Beirat: Dr. Gert Sieger (Vorsitzender), Dr. Peter Pagé, Kurt Sibold Scanned by Check Point Total Security Gateway. ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
