You are here: Webhelp 5.5R7 > Diagnosis > Packet Path Detection

Packet Path Detection

This feature may not be available on all platforms. Please check your system's actual page if your device delivers this feature.

Based on the packet process flow, the packet path detection function detects the packets and shows the detection processes and results to the users with charts an descriptions. This function can detect the following packet sources: emulation packet, online packet, and imported packet (system provides the Packet Capture Tool for you that can help you capture the packets).

The detectable packets from different packet sources have different detection measures. System supports the following measures:

  • Emulation packet detection: Emulate a packet and detect the process flow in the system of this packet.

  • Online packet detection: Perform a real-time detection of the process flow of the packets in system.

  • Imported packet detection: Import the existing packets and detect the process flow in system of the packets.

Configuring Packet Path Detection

You can configure the packet path detection configurations and view the detection results in the report.

Emulation Detection

To perform the emulation detection, take the following steps:

  1. Select System > Diagnostic Tool > Packet Path Detection.
  2. Click Choose Detected Source.
  3. In the Choose Detected Source dialog box, select Emulation Packet tab.
  4. Click Start to start the detection. The system displays the detection flow in the flow chart and describes the detection process. The flow chart contains all modules the packets passes in the system. After the detection for a particular module is completed, the status indicator above the module indicates the detection results.
    • Green indicator() - Indicates the detection for this module has been passed. System will proceed with the detection. Hover your mouse over this step to view its introduction.
    • Yellow indicator() - Indicates the detection for this module has been passed, but there are potential security risks. System will proceed with the detection. Hover your mouse over this step to view its introduction and the detection results. You can click the View Results link to view the detailed detection report.

    • Red indicator() - Indicates the detection for this module fails to pass. System has stopped the detection. Hover your mouse over this step to view its introduction and the detection results. You can click the View Results link to view the detailed detection report. If the failure is caused by the policy rule configurations, you can click the link in the Policy Rule step to jump to the policy rule configuration page.

  5. After the detection is completed, view the detection results in the Detection Result tab. The detection results include the status indicator and detection result summary. You can click the View Details link to view the detailed detection report. The meanings of status indicators are as follows:

    • Green indicator() - Indicates the detected source has passed all detection.
    • Yellow indicator() - Indicates the detected source has passed all detection, but there are potential security risks in one or more steps. You can click the View Details link to view the potential risks and advice.

    • Red indicator() - Indicates not all detection is passed by the detected source. You can click the View Details link to view the failure reasons and advice.

Online Detection

To perform the online detection, take the following steps:

  1. Select System > Diagnostic Tool > Packet Path Detection.
  2. Click Choose Detected Source.
  3. In the Choose Detected Source dialog box, select Online Packet tab.
  4. Click OK.
  5. If needed, specify the detecting duration in the Detecting Duration section. After reaching the specified duration, system will automatically stop the detection. The default value is 30 minutes.
  6. If needed, select Capture Packets check box to enable the capture packets function. You can download the captured packets to a specified directory. Before selecting this check box, make sure the Packets Capture Tools function is disabled. For more information, see Packet Capture Tool.
  7. Click Start to start the detection. The system displays the detection process. If errors occurr during the detection, a flow thumbnail in the area of the flow chart pops up to display the corresponding errors. After the detection is completed, you can click the flow thumbnail to view the details. During each detection process, the system can pop up at most six thumbnails.
  8. After the detection is completed, view the detection results in the Detection Result tab. The detection results include the status indicator and detection result summary. You can click the View Details link to view the detailed detection report. About the meanings of status indicators, view step 3 in Emulation Detection.

If one of the following situations happens during the detection, the system will stop the detection.
  • Click the Stop button.

  • Reach the upper limit of the detecting duration. If you do not set the detecting duration, the detecting duration keeps the default value (30 minutes).

  • The total number of errors of the same type reaches 10. For example, the flow is blocked by the same policy.

  • The total number of errors of different types reaches 5. Errors of different types mean the errors occurred in different modules or errors occurred in one module but are different types.

  • After selecting the Capture Packets option, the size of the captured packet file reaches 10M and errors occurred during the detection.

Imported Detection

To perform the imported detection, take the following steps:

  1. Select System > Diagnostic Tool > Packet Path Detection.
  2. Click Choose Detected Source.
  3. In the Choose Detected Source dialog box, select Imported Packet tab.
  4. Click OK.
  5. Click Start to start the detection. The system displays the detection process in the Detection Process tab. If errors occurr during the detection, a flow thumbnail in the area of the flow chart pops up to display the corresponding errors. After the detection is completed, you can click the flow thumbnail to view the details. During each detection process, the system can pop up at most six thumbnails.
  6. After the detection is completed, view the detection results in the Detection Result tab. The detection results include the status indicators and detection result summary. You can click the View Details link to view the detailed detection report. For the meanings of the status indicators, view step 3 in Emulation Detection.

If one of following situations happens during the detection, the system will stop the detection.
  • Click the Stop button.

  • The total number of errors of the same type reaches 10. For example the flow is blocked by the same policy.

  • The total number of errors of different types reaches 5. Errors of different types mean the errors occurred in different modules or errors occurred in one module but are different types.

  • The imported packets have been all detected.

Detected Sources

The detected sources dialog box lists all detected sources in the system, including the emulation packet, online packet, and imported packet.

Click Choose Detected Source. In the Choose Detected Source dialog box, select the Detected Sources tab. You can then perform the following actions:

  • Click Details in the Result column to view the detection report of the detected source.

  • Click Export in the Export Packet column to export the detected packet to the desired directory.

  • Click Edit in the Option column to edit the configurations of the detected source.

  • Click Delete in the Option column to delete the detected source.