Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
ON THIS PAGE
 

traceoptions (Access)

Syntax

Hierarchy Level

Description

CAUTION:

Enabling tracing can adversely impact scale and performance and may increase security risk. We strongly recommend using the trace, tracing, or traceoptions commands only under the guidance of a JTAC support engineer. After collecting the debug information, immediately disable tracing to minimize risk and restore normal system performance.

Define Routing Engine firewall authentication tracing options.

Options

  • file filename—Name of the file to receive the output of the tracing operation. Enclose the name within quotation marks. All files are placed in the directory /var/log.

  • files number—(Optional) Maximum number of trace files. When a trace file named trace-file reaches its maximum size, it is renamed to trace-file.0, then trace-file.1, and so on, until the maximum number of trace files is reached. The oldest archived file is overwritten.

  • If you specify a maximum number of files, you also must specify a maximum file size with the size option and a filename.

  • Range: 2 through 1000 files

  • Default: 10 files

  • match regular-expression—(Optional) Refine the output to include lines that contain the regular expression.

  • sizemaximum-file-size—(Optional) Maximum size of each trace file, in kilobytes (KB), megabytes (MB), or gigabytes (GB). When a trace file named trace-file reaches this size, it is renamed trace-file.0. When the trace-file again reaches its maximum size, trace-file.0 is renamed trace-file.1 and trace-file is renamed trace-file.0. This renaming scheme continues until the maximum number of trace files is reached. Then the oldest trace file is overwritten.

  • If you specify a maximum file size, you also must specify a maximum number of trace files with the files option and filename.

  • Syntax: x k to specify KB, x m to specify MB, or x g to specify GB

  • Range: 10 KB through 1 GB

  • Default: 128 KB

  • world-readable | no-world-readable—(Optional) By default, log files can be accessed only by the user who configures the tracing operation. The world-readable option enables any user to read the file. To explicitly set the default behavior, use the no-world-readable option.

  • flag flag—Tracing operation to perform. To specify more than one tracing operation, include multiple flag statements. You can include the following flags.

  • all—All tracing operations

  • authentication—Trace authentication events

  • configuration—Trace configuration events

  • setup—Trace setup of firewall authentication service

Required Privilege Level

trace—To view this statement in the configuration.

trace-control—To add this statement to the configuration.

Release Information

Statement introduced in Release 8.5 of Junos OS.

Related Documentation