You can use the Fireware XTM Web UI Diagnostic Tasks tool to find diagnostic information for your Firebox or XTM device, to learn more about a log message, or to review information in your device log messages to help you debug problems on your network. You can ping the source or destination IP address, trace the route to the source or destination IP address, look up DNS information for an IP address, or see information about the packets transmitted across your network (TCP dump). You can also include arguments in your task details to narrow the results.
You can also run a VPN Diagnostic Report to see configuration and status information for a VPN gateway and the associated Branch Office VPN tunnels.
From the Diagnostics pages, you can also download a diagnostic log file (support.tgz) that includes packet trace information about your Firebox or XTM device. For more information about how to download a diagnostic file, see Download a Diagnostic Log File.
If fault events have occurred on your Firebox or XTM device, you can see and manage the Fault Reports from the Diagnostics pages. For more information about Fault Reports, see Manage Fault Reports.
For more information about the System Status pages, see About the Dashboard and System Status Pages.
From your Firebox or XTM device, you can use the DNS Lookup task to find which IP address a host name resolves to.
From the Diagnostic page, you can download a packet capture (PCAP) file to help you diagnose problems with the traffic on your network. The PCAP file captures the results of the most recent TCP dump task that you run so you can review the protocols found in the task results outside of the Diagnostic page. If you do not save the TCP dump results to a PCAP file, the results of the TCP dump task are cleared when you run a new diagnostic task.
When you enable the Advanced Options to include arguments in the TCP dump task, you must always specify an interface. This can be a physical interface on the Firebox or XTM device (such as, eth0), a Link Aggregation interface (such as, bond0), a wireless interface (such as, ath0), or a VLAN interface (such as, vlan10).
When you create the PCAP file with the TCP dump data, you choose whether to save the file or open it. To open the PCAP file, you use a third-party application, such as Wireshark. You can then review the protocols included in the file and resolve issues in your network configuration. The maximum size of the PCAP file is 30 MB. If your XTM device has limited memory, the size of the PCAP file is constrained relative to the available memory available on your device.
To save the TCP dump data directly to a PCAP file:
To see configuration and status information for a VPN gateway and the associated Branch Office VPN tunnels, you can run a VPN Diagnostic Report. When you run a report, the Firebox or XTM device temporarily increases the log level for the selected gateway.
On the Diagnostic page:
The Firebox or XTM device collects log messages for the duration you specified. When the task is completed, details about the gateway and tunnel configuration and information about the status of any active tunnels for the selected gateway appear in the Results section. The log level is then returned to the previously set level.
For more information about diagnostic tasks for VPNs, see Use the VPN Diagnostic Report.