Minh Quang Nguyen a écrit :
Hi Gurus,
I'm calling on your vast experience to help to determine if there's any
advanced CLI command (or GUI tool) to debug dropped Smart Defence
traffic that doesn't show up in the tracker.
As you guys know so well, especially with NGX R65, a lot of traffic is
now dropped without it appearing in the tracker. I've tried playing
around with inserting "fw monitor" along the firewall chain modules but
wasn't able to pinpoint exactly how.
for dropped traffic, regardless what is the exact reason, you can use
fw ctl zdebug drop.
this shows you the dropped packets in real-time, even when smartview
tracker doesn't show any drop.
combine it with an fw monitor so you can see exactly where the
communication is stopped.
Any insight would be greatly appreciated
Thanks
Minh
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [EMAIL PROTECTED]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[EMAIL PROTECTED]
=================================================
Scanned by Check Point Total Security Gateway.
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [EMAIL PROTECTED]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[EMAIL PROTECTED]
=================================================
