Module "CI" (Content Inspection)
Syntax
-
On the Security Gateway Dedicated Check Point server that runs Check Point software to inspect traffic and enforce Security Policies for connected network resources. / each Cluster Member Security Gateway that is part of a cluster., run in the Expert mode:
fw ctl debug -m CI + {all | <List of Debug Flags>}
-
g_fw ctl debug -m CI + {all | <List of Debug Flags>}
Flag |
Description |
---|---|
|
Prints connection addresses (as |
|
|
|
Coverage times (entering, blocking, and time spent) |
|
Basic information about encryption and decryption |
|
General errors |
|
Fatal errors |
|
Basic information about URL filters |
|
General information |
|
Currently is not used |
|
Memory allocation operations |
|
Operations in the Content Inspection module (initialization, module loading, calls to the module, policy loading, and so on) |
|
Content Inspection policy |
|
Basic information about the Content Inspection module (initialization, destroying, freeing) |
|
Regular Expression library |
|
Session layer |
|
Content Inspection statistics |
|
Prints the debug subject of each debug message |
|
Prints the timestamp for each debug message (changes when you enable the debug flag ' |
|
Use only for very limited important debug prints, so it can be used in a loaded environment - Content-Disposition, Content-Type, extension validation, extension matching |
|
URL filters and URL cache |
|
Prints the VSID of the debugged Virtual System |
|
General warnings |