Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
ON THIS PAGE
 

Troubleshooting Scenarios

This topic provides you troubleshooting information when you encounter issues while using SRX4700 Firewall.

You can use existing troubleshooting feature to work around issues with the SRX4700. For example, you can use monitoring commands, log files, debugging (or trace options), packet capture for transit traffic through the firewall, or packet capture of control traffic to and from the firewall's Routing Engine. Request support information (RSI) support should include all the commands that are currently supported on the SRX4700 Firewall.

  • Trace options—The firewall device must support trace options for all processes, services, and protocols. Trace options are very useful during debugging and troubleshooting.

  • RSI—On-box UI and centralized management must provide any option to create and download the RSI information for JTAC case or ticket.

  • Boot messages—An option must be provided to save boot messages in a file, such that user should be able to retrieve errors or messages displayed during boot process.

For more troubleshooting information, see:

Trace Options

SRX4700 Firewall supports trace options for all processes, services, and protocols.

Use the references below for more details on trace option:

RSI and Logs

  • user@srx> request support information | save /var/log/rsi#-YYYY-MM-DD.txt

    user@srx> file archive compress source /var/log/* destination /var/tmp/logs#-YYYY-MM-DD

    This command creates the /var/tmp/logs#-YYYY-MM-DD/tgz file on SRX4700 Firewall to archive and compress log files from /var/log.

  • To move the files from the secondary node to the primary node:

    file copy /var/tmp/logs-node1--YYYY-MM-DD.tgz node0:/var/tmp/

  • To upload large files to a JTAC support case using SFTP, see How to upload large files to a JTAC support case using SFTP.

Boot Messages

  • To see the boot messages for the most recent boot messages, run the show system boot-messages command.

    For more information, see show system boot-messages.

    You can also find this information in /var/run/dmesg.boot.