xiazhanchao-lov 2008-5-15 13:16
Juniper防火墙case信息收集表.
Juniper防火墙case信息收集表.Juniper防火墙case信息收集表.
gongfei 2008-7-16 15:16
怎么下载不了啊?<;+enu:": ?<;+enu:":
gpm1xf 2008-8-19 14:17
good,thank you very much.it is good for me
newpower888 2008-9-3 17:07
一、系统宕机问题
基本信息:
get tech
get log sys saved
console dump output
/***console线连接防火墙,检查并记录console口显示信息***/
需提供细节信息:
发现系统宕机具体时间
网络拓朴结构
防火墙近期调整内容
网络近期调整内容
当前通过防火墙的数据类型和数据量
防火墙宕机前已经稳定运行多长时间?
以前是否出现过类似宕机现象?
防火墙宕机时是否有人正登陆防火墙?通过什么方式?(NSM, Telnet, SSH, console, WebUI)
二、CPU使用过高问题
get clock
get perf cpu all detail
get perf sess detail
get counter stat
get os task
get arp
get log system
get alarm event
get socket
get gate
get tcp
get session info
get mem
get net-pak s
get tech
get sess > tftp ******(local tftp server ip) *****(file 为name)
get sess hard > tftp ******(local tftp server ip) *****(file name)
NS5000平台:以下每条命令请各执行4次(每10秒一次)
get clock | i date
get arp asic 0
get sat 0 d
get sat 0 x-c
get sat 0 fr
get sat 0 c
get arp asic 1
get sat 1 d
get sat 1 x-c
get sat 1 fr
get sat 1 c
get sess frag
get sess info
get counter sta inter eth2/1
get counter sta inter eth2/5
ISG平台:以下每条命令请各执行4次(每10秒一次)
get arp asic 0
get sat 0 d
get sat 0 x-c
get sat 0 fr
get sat 0 c
get sat 0 s
ScreenOS 5.3以上版本需补充执行:
set alarm snapshot CPU on
set alarm snapshot CPU trigger (每10秒重复执行3次)
unset alarm snapshot CPU on
get alarm snapshot CPU all
clear db
debug flow basic 10秒
get db stream
[Use with CAUTION; may cause high CPU lockup]
三、NSRP问题
基本信息:
get tech
get event
get log sys
get nsrp
get nsrp monitor
get interface
详细信息收集(每条命令执行3-4次):
get nsrp
get nsrp counter
get nsrp coun packet
get interface
exec nsrp sync global-config check-sum
/***通过console口执行***/
clear db
undebug all
debug nsrp all
get db str
四、吞吐转发性能问题
基本信息收集:
get tech
get perf cpu all detail
get perf session detail
get net-pak s
get log sys
get session info
get sess frag
get counter stat
get gate
get pport
get flow
get tcp
get event
get zone <zone> screen counter
get session > tftp
get sess hardware > tftp
详细信息(重复执行下列命令3-4次):
get clock
get perf cpu all detail
get perf sess detail
get counter stat
get os task
get arp
get session info
get net-pak s
get lance info /***适用ns25/50/204/208平台***/
ISG平台补充捕捉下列信息3-4次:
get arp asic 0
get sat 0 d
get sat 0 x-c
get sat 0 fr
get sat 0 c
get sat 0 s
get fresno 0
get counter stat
NS5000平台补充捕捉下列信息3-4次: (其中X = 0-7 until out-of-range)
get arp asic X
get sat X d
get sat X x-c
get sat X fr
get sat X c
get sat X s
get michigan 0 (适用M1管理板)
get fresno 0 (适用M2管理板)
get counter stat
五、内存过高问题:
基本信息收集:
get tech
get mem
get log sys
get session info
get event
WebUI界面中内存显示黄色或红色?
详细数据收集:
Instructions specified in internal knowledgebase article nskb7056:
--- Test setup ---------------
(just do the setup commands once only)
clear mem debug
set mem debug 10000
(if appropriate, run either of the following two commands also)
set mem pool_debug pki-ike 10000
set mem pool_debug idp 10000 (if related to DI)
--- Every 24 hours ---------
(repeat block of commands below)
get clock
get mem
get mem pool
get mem ipc
get mem chunk
get mem ker
get mem debug
get mem used
get os task
get net-pak
get net-pak s
get net-b
DO NOT USE "clear mem debug" ONCE TEST HAS BEEN STARTED.
The output from the get commands can be very long. Set console page to 0 before beginning and capture/log ALL output.
所有信息收集后,关闭Debug命令:
unset mem debug
unset mem pool-debug name pki-ike
六、数据流问题
基本信息:
get tech
set console dbuf
set ff src-ip <ipaddrA> dst-ip <ip-addrB>*
set ff src-ip <ipaddrB> dst-ip <ip-addrA>*
debug flow basic
***发起信息捕获测试***
get db stream
详细信息:
debug stflow basic
debug tag info
debug flow session
clear db
***发起信息捕获测试***
undebug all
get db stream
get session src-ip
get session dst-ip
get counter stat
七、静态路由问题
基本信息:
get tech
get event
get route
get route ip <route in question>
get route id X (where X is ID of route in question)
get counter flow
get vr <vr> route source
细节信息:
debug flow basic (with proper flow filters)
get db stream
get session src-ip
get session dst-ip
Ellen_0769 2008-10-9 12:46
踏破铁鞋无觅处,来得太及时了+=001(
darkyboy 2008-10-12 23:18
很有用的东西,多谢分享了~
butcherkkx 2008-10-18 11:34
好东西
多多支持!!!多多支持!!!
Tonyguo27 2008-10-22 16:47
谢谢搂主分享呀!!!!!!!!!!!
happywolf 2008-10-30 19:27
时尚首饰时尚首饰时尚首饰时尚首饰时尚
