Netscreen – Debugging / Troubleshooting

In order to debug and obtain output for the traffic flow through the Netscreen, you will need action a couple of commands, these are shown below,

5gt-> unset ff
filter 0 removed
5gt-> undebug all
5gt-> clear db

5gt-> set ff dst-port 8080
filter added
5gt-> debug flow basic
5gt-> get db str

Below shows you what each command does….

  • unset ff =remove all flow filters
  • undebug all = clears all previous debug settings
  • clear db = clears the debug buffer
  • set ff dst-port 8080 = creates a flow filter for port 8080
  • debug flow basic = sets the debug flow level to basic
  • get db str = shows the debug buffer stream

Once you have got your debug stream buffer you can remove the flow filter, the debug basic and clear the debug buffer.

You can also use the snoop packet capture feature as a troubleshooting tool, the how to guide can be found here

Rick Donato

Want to become an IT Security expert?

Here is our hand-picked selection of the best courses you can find online:
Internet Security Deep Dive course
Complete Cyber Security Course – Hackers Exposed
CompTIA Security+ (SY0-601) Certification Complete course
and our recommended certification practice exams:
AlphaPrep Practice Tests - Free Trial