Tools

Using the Tools page, one can view the statistics to diagnose the connectivity problem, network problem and test network communication. It assists in troubleshooting issues such as hangs, packet loss, connectivity, discrepancies in the network.

Pop-out tools

Log viewer
The log viewer opens in a new full-screen browser window and by default shows firewall logs. For more information, see Log viewer.
Policy tester
The policy tester opens in a new full-screen browser window. Use the policy tester before and after you edit a rule or policy to verify the applied action. For more information, see Policy tester.

Ping

Ping is the most common network administration utility used to test the reachability of a host on an Internet Protocol (IP) network and to measure the round-trip time for messages sent from the originating host to a destination computer.

Ping sends ICMP echo request/replies to test the connectivity to other hosts. Use standard ICMP ping to confirm that the server is responding. Ping confirms that the server can respond to an ICMP ping request.

Use Ping diagnostically to:
  • Ensure that a host computer you are trying to reach is actually operating or the address is reachable or not
  • Check how long it takes to get a response
  • Get the IP address from the domain name
  • Check for the packet loss

The parameters used are:

IP address/Hostname
Specify the IP address (IPv4/IPv6) or fully qualified domain name to be pinged.
Ping determines the network connection between the device and a host on the network. The output shows if the response was received, packets transmitted and received, packet loss if any and the round-trip time. If a host is not responding, ping displays 100% packet loss.
IP family
Select the type of IP family from the options available:
Available optionsIPv4 IPv6
Interface
Select the interface through which the ICMP echo requests are to be sent.
Size
Specify the ping packet size, in bytes.
Default: 32 bytes
Size range: 1 to 65507

Traceroute

Traceroute is a useful tool to determine if a packet or communication stream is being stopped at the device, or is lost on the internet by tracing the path taken by a packet from the source system to the destination system, over the internet.

Use Traceroute to:
  • find any discrepancies in the network or the ISP network within milliseconds.
  • trace the path taken by a packet from the source system to the destination system, over the internet.
The parameters used are:
IP address/Hostname
Specify the IP address (IPv4/IPv6) or fully qualified domain name.
Traceroute determines the network connection between the device and a host on the network. The output shows all the routers through which data packets pass on way from the source system to the destination system, maximum hops and total time taken by the packet to return measured in milliseconds.
IP family
Select the type of IP family from the options available:
Available optionsIPv4 IPv6
Interface
Select the interface through which the requests are to be sent.

Name lookup

Name lookup is used to query the domain name service for information about domain names and IP addresses. It sends a domain name query packet to a configured domain name system (DNS) server. If a domain name is entered, the return is an IP address to which it corresponds, and if an IP address is entered, then the domain name is returned to which it corresponds. In other words, name lookup reaches out over the internet to do a DNS lookup from an authorized name server, and displays the information in user understandable format.

The parameters used and their descriptions are:
IP address/Hostname
IP address (IPv4/IPv6) or fully qualified domain name that needs to be resolved.
DNS server IP
Select the DNS server to which the query is to be sent.
Select Lookup using all configured servers to view all the available DNS servers configured in the device. Selecting this option will also provide information about the time taken by each DNS sever to resolve the query. Based on the response time,of each server, you can prioritize the DNS server.

Route lookup

If you have routable networks and wish to search through which interface the device routes the traffic then lookup the route for the IP address (IPv4/IPv6).

Consolidated troubleshooting report

To help the support team to debug the system problems, a troubleshooting report can be generated which consists of the system’s current status file and log files. The file contains details like a list of all the processes currently running on the system, resource usage etc. in encrypted form.

The administrator has to generate and mail the saved file to support for diagnosing and troubleshooting the issue.

The file will be generated with the name: CTR_<APPKEY>__<MM_DD_YY>_<HH_MM_SS> where
  • APPKEY is the device key of the device for which the report is generated
  • MM_DD_YY is the date (month date year) on which the report is generated
  • HH_MM_SS is the time (hour minute second) at which the report is generated
By default, the debug mode is off for all the subsystems. Before generating a log file, enable the debug mode by executing following command at the command line:
console> diagnostics subsystems <subsystem name> debug on
Note Debug mode cannot be enabled, if you only want to generate a system snapshot.
The parameters used are:
Generate CTR for
Enable the option(s) for which CTR should be generated.
Available options:System snapshot: Generates snapshots to display the issues in the system.
Log files: Generates log files.
Reason
Specify the reason for generating CTR.
Generate
Click to generate the CTR.

When you generate a log files CTR, the following four complete log files are collected:

  • syslog.log
  • postgres.log
  • reportdb.log
  • applog.log

In addition, the last 1,000 lines of all other log files are collected.

Note When generating log files, any *.log.0 files aren't collected.