Support Support Downloads Knowledge Base Apex Support Portal Community

Knowledge Base

Search our Knowledge Base sites to find answers to your questions.

Ask All Knowledge Base Sites All Knowledge Base Sites JunosE Defect (KA)Knowledge BaseSecurity AdvisoriesTechnical BulletinsTechnotes Sign in to display secure content and recently viewed articles

No Traffic logs in NSM

0

0

Article ID: KB11036 KB Last Updated: 24 Aug 2010Version: 5.0
Summary:
Even though a policy is configured to log traffic, no traffic logs are visible in the NSM UI.
Symptoms:
Traffic logs from the device do not appear in NSM UI
Solution:

Traffic logs are not visible in NSM UI - This might be due to multiple reasons

  1. Check if traffic is flowing through device
    Login to device using cli and run: #get policy id 1 

    Sample output:
    global policy: name:"none" (id 1), zone Global -> Global,action Deny, status "enabled"
    src "Any", dst "Any", serv "ANY"
    Policies on this vpn tunnel: 0
    nat off, Web filtering : disabled
    vpn unknown vpn, policy flag 00010080, session backup: on
    policy IDP mode : inline
    traffic shapping off, scheduler n/a, serv flag 00
    log close, log count 0, alert no, counter no(0) byte rate(sec/min) 0/0
    total octets 7843924, counter(session/packet/octet) 0/0/0
    No Authentication
    No User, User Group or Group expression set


    This shows no traffic passing through the device matching rule 1. No logs will be sent ot NSM

  2. Check if device is connected to NSM
    Login to device using CLI and run  #get nsm
    This will show the status of NSM connection - if the state is "Disconnected or Connecting" no logs will be sent over to NSM

    The command output will also show if any logs are dropped. If you see the traffic is matching the policy and still no traffic is displayed in NSM, then:

    1. Verify if DevSvr log index is corrupt - Refer KB10965

    2. Check the logs coming in to DevSvr:
      Login to NSM devSvr cli and run "/usr/netscreen/DevSvr/utils/logcount.sh today" this will show you the total logs for today.

      Example:
      /usr/netscreen/DevSvr/utils/logcount.sh today
      Total Days: 1
      Total Logs: 9
      Maximum Logs for 20080226 : 9
      Average Logs per Second: 0
      Total Log DB Size (MB): 0
Comment on this article > Affected Products Browse the Knowledge Base for more articles related to these product categories. Select a category to begin.

Getting Up and Running with Junos

Getting Up and Running with Junos Security Alerts and Vulnerabilities Product Alerts and Software Release Notices Problem Report (PR) Search Tool EOL Notices and Bulletins JTAC User Guide Customer Care User Guide Pathfinder SRX High Availability Configurator SRX VPN Configurator Training Courses and Videos End User Licence Agreement Global Search