Diagnostics

You can use the Fireware XTM Web UI Diagnostic Tasks tool to find diagnostic information for your Firebox or XTM device, to learn more about a log message, or to review information in your device log messages to help you debug problems on your network. You can ping the source or destination IP address, trace the route to the source or destination IP address, look up DNS information for an IP address, or see information about the packets transmitted across your network (TCP dump). You can also include arguments in your task details to narrow the results.

You can also run a VPN Diagnostic Report to see configuration and status information for a VPN gateway and the associated Branch Office VPN tunnels.

From the Diagnostics pages, you can also download a diagnostic log file (support.tgz) that includes packet trace information about your Firebox or XTM device. For more information about how to download a diagnostic file, see Download a Diagnostic Log File.

If fault events have occurred on your Firebox or XTM device, you can see and manage the Fault Reports from the Diagnostics pages. For more information about Fault Reports, see Manage Fault Reports.

  1. Select System Status > Diagnostics.
    The Diagnostics page appears with the Diagnostics File tab selected.
  2. Select the Network tab.
    The Network page appears.

Screen shot of the System Status > Diagnostics page

Run a Basic Diagnostics Command

  1. From the Task drop-down list, select a command:
  2. If you select Ping, traceroute, or DNS Lookup, in the Address text box, type an IP address or host name.
    If you select TCP Dump, from the Interface drop-down list, select an interface.
  3. Click Run Task.
    The output of the command appears in the Results window and the Stop Task button appears.
  4. To stop the diagnostic task, click Stop Task.

Use Command Arguments

  1. From the Task drop-down list, select a command:
  2. Select the Advanced Options check box.
    The Arguments text box is enabled and the Address or Interface text box is disabled.
  3. In the Arguments text box , type the command arguments.
    To see the available arguments for a command, leave the Arguments text box blank.
  4. Click Run Task.
    The output of the command appears in the Results window and the Stop Task button appears.
  5. To stop the diagnostic task, click Stop Task.

For more information about the System Status pages, see About the Dashboard and System Status Pages.

Find the IP Address for a Host Name

From your Firebox or XTM device, you can use the DNS Lookup task to find which IP address a host name resolves to.

  1. From the Task drop-down list, select DNS Lookup.
    The Address text box appears.
  2. In the Address text box, type the host name.
  3. Click Run Task.
    The IP address for the host name you specified appears in the Results list.

Download a PCAP File

From the Diagnostic page, you can download a packet capture (PCAP) file to help you diagnose problems with the traffic on your network. The PCAP file captures the results of the most recent TCP dump task that you run so you can review the protocols found in the task results outside of the Diagnostic page. If you do not save the TCP dump results to a PCAP file, the results of the TCP dump task are cleared when you run a new diagnostic task.

When you enable the Advanced Options to include arguments in the TCP dump task, you must always specify an interface. This can be a physical interface on the Firebox or XTM device (such as, eth0), a Link Aggregation interface (such as, bond0), a wireless interface (such as, ath0), or a VLAN interface (such as, vlan10).

When you create the PCAP file with the TCP dump data, you choose whether to save the file or open it. To open the PCAP file, you use a third-party application, such as Wireshark. You can then review the protocols included in the file and resolve issues in your network configuration. The maximum size of the PCAP file is 30 MB. If your XTM device has limited memory, the size of the PCAP file is constrained relative to the available memory available on your device.

To save the TCP dump data directly to a PCAP file:

  1. Select System Status > Diagnostics.
    The Diagnostics page appears with the Diagnostics File tab selected.
  2. Select the Network tab.
    The Network page appears.
  3. From the Task drop-down list, select TCP Dump.

    The Interface drop-down list appears.
  4. Select the Advanced Options check box.
    The advanced options appear.

Screen shot of the Diagnostic Tasks page, TCP Dump task

  1. In the Arguments text box, type the parameters for the search. Parameters are case sensitive.
    For example, to capture PCAP data for the default external interface, type -ieth0.
  2. Select the Stream data to a file check box.
  3. Click Run Task.
    The task runs and the Stop Task button and Open or Save File dialog box appear.

  1. Save or open the PCAP file.
    If you choose to save the PCAP file, specify a location to save the file and a name for the file.
    If you choose to open the PCAP file, select the third-party application to use to open the file.
  2. Click OK.
  3. When the TCP dump has collected enough results, click Stop Task.

Run a VPN Diagnostic Report

To see configuration and status information for a VPN gateway and the associated Branch Office VPN tunnels, you can run a VPN Diagnostic Report. When you run a report, the Firebox or XTM device temporarily increases the log level for the selected gateway.

On the Diagnostic page:

  1. Select the VPN tab.

Screen shot of the Diagnostic Tasks > VPN page

  1. From the Gateway drop-down list, select a VPN gateway.
  2. In the Duration text box, type the number of seconds to run the VPN Diagnostic Report.
  3. Click Start Report.
    The diagnostic task starts.

The Firebox or XTM device collects log messages for the duration you specified. When the task is completed, details about the gateway and tunnel configuration and information about the status of any active tunnels for the selected gateway appear in the Results section. The log level is then returned to the previously set level.

For more information about diagnostic tasks for VPNs, see Use the VPN Diagnostic Report.

Give Us Feedback  •   Get Support  •   All Product Documentation  •   Knowledge Base