diag debug reset
Fotrigate_100D # diag debug flow filter clear
Fotrigate_100D # diag debug flow filter saddr 10.0.1.141
Fotrigate_100D # diag debug flow filter daddr 172.217.20.174
Fotrigate_100D # diag debug flow filter port 443
Fotrigate_100D # diag debug flow show console enable
show trace messages on console
Fotrigate_100D # diag debug enable
Fotrigate_100D # diag debug flow trace start
Fotrigate_100D # 2017-07-21 09:23:16 id=20085 trace_id=356 func=print_pkt_detail line=4903 msg="vd-root received a packet(proto=6, 10.0.1.141:63024->172.217.20.174:443) from VLAN30. flag [S], seq 185409013, ack 0, win 8192"
2017-07-21 09:23:16 id=20085 trace_id=356 func=init_ip_session_common line=5047 msg="allocate a new session-00029bc7"
2017-07-21 09:23:16 id=20085 trace_id=356 func=vf_ip_route_input_common line=2583 msg="find a route: flag=04000000 gw-85.128.128.33 via wan1"
2017-07-21 09:23:16 id=20085 trace_id=356 func=fw_forward_handler line=711 msg="Allowed by Policy-211: AV SNAT"
2017-07-21 09:23:16 id=20085 trace_id=356 func=ids_receive line=252 msg="send to ips"
2017-07-21 09:23:16 id=20085 trace_id=356 func=av_receive line=268 msg="send to application layer"

Fotrigate_100D # diag deb flow trace stop
Fotrigate_100D # diag debug flow filter port 80
Fotrigate_100D # diag debug flow trace start
Fotrigate_100D # 2017-07-21 09:24:00 id=20085 trace_id=357 func=print_pkt_detail line=4903 msg="vd-root received a packet(proto=6, 10.0.1.141:63043->172.217.20.174:80) from VLAN30. flag [S], seq 2831234756, ack 0, win 8192"
2017-07-21 09:24:00 id=20085 trace_id=357 func=init_ip_session_common line=5047 msg="allocate a new session-00029f75"
2017-07-21 09:24:00 id=20085 trace_id=357 func=vf_ip_route_input_common line=2583 msg="find a route: flag=04000000 gw-85.128.128.33 via wan1"
2017-07-21 09:24:00 id=20085 trace_id=357 func=fw_forward_handler line=711 msg="Allowed by Policy-211: AV SNAT"
2017-07-21 09:24:00 id=20085 trace_id=357 func=ids_receive line=252 msg="send to ips"
2017-07-21 09:24:00 id=20085 trace_id=357 func=av_receive line=268 msg="send to application layer"
Fotrigate_100D # diag deb flow trace stop
Fotrigate_100D # diag deb dis



diag debug resetFotrigate_100D # diag debug flow filter clearFotrigate_100D # diag debug flow filter saddr 10.0.1.141Fotrigate_100D # diag debug flow filter daddr 172.217.20.174Fotrigate_100D # diag debug flow filter port 80diag debug flow show console enable
Fotrigate_100D # diag debug flow show console enableshow trace messages on consolediag debug enable
diag debug flow trace start
Fotrigate_100D # diag debug flow show iprope enableshow trace messages about iprope
Fotrigate_100D # diag debug flow show function-name enableshow function name
Fotrigate_100D # diag debug console timestamp enableFotrigate_100D # diag debug enableFotrigate_100D # diag debug flow trace startFotrigate_100D # 2017-07-21 09:31:30 id=20085 trace_id=359 func=print_pkt_detail line=4903 msg="vd-root received a packet(proto=6, 10.0.1.141:52033->172.217.20.174:80) from VLAN30. flag [S], seq 3067966595, ack 0, win 65535"
2017-07-21 09:31:30 id=20085 trace_id=359 func=init_ip_session_common line=5047 msg="allocate a new session-0002cc4d"
2017-07-21 09:31:30 id=20085 trace_id=359 func=iprope_dnat_check line=4660 msg="in-[VLAN30], out-[]"
2017-07-21 09:31:30 id=20085 trace_id=359 func=iprope_dnat_tree_check line=838 msg="len=0"
2017-07-21 09:31:30 id=20085 trace_id=359 func=iprope_dnat_check line=4673 msg="result: skb_flags-02000000, vid-0, ret-no-match, act-accept, flag-00000000"
2017-07-21 09:31:30 id=20085 trace_id=359 func=vf_ip_route_input_common line=2583 msg="find a route: flag=04000000 gw-85.128.128.33 via wan1"
2017-07-21 09:31:30 id=20085 trace_id=359 func=iprope_fwd_check line=636 msg="in-[VLAN30], out-[wan1], skb_flags-02000000, vid-0"
2017-07-21 09:31:30 id=20085 trace_id=359 func=__iprope_tree_check line=545 msg="gnum-100004, use addr/intf hash, len=33"
2017-07-21 09:31:30 id=20085 trace_id=359 func=__iprope_check_one_policy line=1824 msg="checked gnum-100004 policy-4294967295, ret-no-match, act-accept"
2017-07-21 09:31:30 id=20085 trace_id=359 func=__iprope_check_one_policy line=1824 msg="checked gnum-100004 policy-104, ret-no-match, act-accept"
2017-07-21 09:31:30 id=20085 trace_id=359 func=__iprope_check_one_policy line=1824 msg="checked gnum-100004 policy-80, ret-matched, act-accept"
2017-07-21 09:31:30 id=20085 trace_id=359 func=__iprope_user_identity_check line=1649 msg="ret-no-match"
2017-07-21 09:31:30 id=20085 trace_id=359 func=__iprope_check_one_policy line=2026 msg="gnum-100004 policy-210 is not active"
2017-07-21 09:31:30 id=20085 trace_id=359 func=__iprope_check_one_policy line=2026 msg="gnum-100004 policy-134 is not active"
2017-07-21 09:31:30 id=20085 trace_id=359 func=__iprope_check_one_policy line=2026 msg="gnum-100004 policy-192 is not active"
2017-07-21 09:31:30 id=20085 trace_id=359 func=__iprope_check_one_policy line=1824 msg="checked gnum-100004 policy-169, ret-matched, act-accept"
2017-07-21 09:31:30 id=20085 trace_id=359 func=__iprope_user_identity_check line=1649 msg="ret-no-match"
2017-07-21 09:31:30 id=20085 trace_id=359 func=__iprope_check_one_policy line=1824 msg="checked gnum-100004 policy-186, ret-no-match, act-accept"
2017-07-21 09:31:30 id=20085 trace_id=359 func=__iprope_check_one_policy line=1824 msg="checked gnum-100004 policy-182, ret-no-match, act-accept"
2017-07-21 09:31:30 id=20085 trace_id=359 func=__iprope_check_one_policy line=1824 msg="checked gnum-100004 policy-148, ret-no-match, act-accept"
2017-07-21 09:31:30 id=20085 trace_id=359 func=__iprope_check_one_policy line=1824 msg="checked gnum-100004 policy-196, ret-no-match, act-accept"
2017-07-21 09:31:30 id=20085 trace_id=359 func=__iprope_check_one_policy line=1824 msg="checked gnum-100004 policy-150, ret-no-match, act-accept"
2017-07-21 09:31:30 id=20085 trace_id=359 func=__iprope_check_one_policy line=1824 msg="checked gnum-100004 policy-166, ret-no-match, act-accept"
2017-07-21 09:31:30 id=20085 trace_id=359 func=__iprope_check_one_policy line=1824 msg="checked gnum-100004 policy-177, ret-no-match, act-accept"
2017-07-21 09:31:30 id=20085 trace_id=359 func=__iprope_check_one_policy line=1824 msg="checked gnum-100004 policy-17, ret-no-match, act-accept"
2017-07-21 09:31:30 id=20085 trace_id=359 func=__iprope_check_one_policy line=1824 msg="checked gnum-100004 policy-152, ret-matched, act-accept"
2017-07-21 09:31:30 id=20085 trace_id=359 func=__iprope_user_identity_check line=1649 msg="ret-no-match"
2017-07-21 09:31:30 id=20085 trace_id=359 func=__iprope_check_one_policy line=1824 msg="checked gnum-100004 policy-211, ret-matched, act-accept"
2017-07-21 09:31:30 id=20085 trace_id=359 func=__iprope_user_identity_check line=1649 msg="ret-matched"
2017-07-21 09:31:30 id=20085 trace_id=359 func=__iprope_check line=2050 msg="gnum-4e35, check-ffffffffa001ecc0"
2017-07-21 09:31:30 id=20085 trace_id=359 func=__iprope_check_one_policy line=1824 msg="checked gnum-4e35 policy-4294967295, ret-no-match, act-accept"
2017-07-21 09:31:30 id=20085 trace_id=359 func=__iprope_check_one_policy line=1824 msg="checked gnum-4e35 policy-9, ret-no-match, act-accept"
2017-07-21 09:31:30 id=20085 trace_id=359 func=__iprope_check_one_policy line=1824 msg="checked gnum-4e35 policy-1, ret-matched, act-accept"
2017-07-21 09:31:30 id=20085 trace_id=359 func=__iprope_check_one_policy line=2021 msg="policy-1 is matched, act-accept"
2017-07-21 09:31:30 id=20085 trace_id=359 func=__iprope_check line=2069 msg="gnum-4e35 check result: ret-matched, act-accept, flag-00202008, flag2-00000000"
2017-07-21 09:31:30 id=20085 trace_id=359 func=__iprope_check_one_policy line=1960 msg="try to get nat"
2017-07-21 09:31:30 id=20085 trace_id=359 func=get_new_addr line=979 msg="find SNAT: IP-85.128.128.36(from IPPOOL), port-52033"
2017-07-21 09:31:30 id=20085 trace_id=359 func=__iprope_check_one_policy line=2021 msg="policy-211 is matched, act-accept"
2017-07-21 09:31:30 id=20085 trace_id=359 func=iprope_fwd_auth_check line=688 msg="after iprope_captive_check(): is_captive-0, ret-matched, act-accept, idx-211"
2017-07-21 09:31:30 id=20085 trace_id=359 func=iprope_shaping_check line=771 msg="in-[VLAN30], out-[wan1], skb_flags-02000000, vid-0"
2017-07-21 09:31:30 id=20085 trace_id=359 func=__iprope_check line=2050 msg="gnum-100015, check-ffffffffa001f3b2"
2017-07-21 09:31:30 id=20085 trace_id=359 func=__iprope_check_one_policy line=1824 msg="checked gnum-100015 policy-2, ret-no-match, act-accept"
2017-07-21 09:31:30 id=20085 trace_id=359 func=__iprope_check_one_policy line=1824 msg="checked gnum-100015 policy-3, ret-no-match, act-accept"
2017-07-21 09:31:30 id=20085 trace_id=359 func=__iprope_check_one_policy line=1824 msg="checked gnum-100015 policy-7, ret-no-match, act-accept"
Fotrigate_100D # diag deb flow trace stopFotrigate_100D # diag deb disFotrigate_100D # exit