Module "WS" (Web Intelligence)
Syntax
-
On the Security Gateway Dedicated Check Point server that runs Check Point software to inspect traffic and enforce Security Policies for connected network resources. / each Cluster Member Security Gateway that is part of a cluster., run in the Expert mode:
fw ctl debug -m WS + {all | <List of Debug Flags>}
-
g_fw ctl debug -m WS + {all | <List of Debug Flags>}
|
Notes:
|
Flag |
Description |
---|---|
|
Information about connection's IP address |
|
HTTP body (content) layer |
|
Connection layer |
|
HTTP cookie header |
|
Coverage times (entering, blocking, and time spent) |
|
Currently is not used |
|
General errors (the connection is probably rejected) |
|
Events |
|
Fatal errors |
|
Currently is not used |
|
Handling of global structure (usually, related to policy) |
|
Processing of HTTP/2 HPACK header compression |
|
Processing of HTTP/2 packets |
|
General information |
|
IOCTL control messages (communication between the kernel and daemons, loading and unloading of the FireWall) |
|
Memory pool allocation operations |
|
Memory allocation operations |
|
Operations in the Web Intelligence module (initialization, module loading, calls to the module, policy loading, and so on) |
|
HTTP header parser layer |
|
HTTP header parsing errors |
|
Pattern finder |
|
Packet dump |
|
Policy (installation and enforcement) |
|
Regular Expression library |
|
Report manager (errors and logs) |
|
Session layer |
|
Stateful Protocol Inspection Infrastructure (INSPECT streaming) |
|
|
|
SSL Tunneling (SSLT) |
|
Memory usage statistics |
|
Stream virtualization |
|
Prints the debug subject of each debug message |
|
Prints the timestamp for each debug message (changes when you enable the debug flag ' |
|
Session UUID |
|
Prints the VSID of the debugged Virtual System |
|
General warnings |