Troubleshooting

This topic describes common procedures used when troubleshooting AFA.

Access log and configuration files

Note: Accessing the device configuration and log files requires configuration and logs privileges. For more details, see Manage users and roles in AFA.

The following table lists log and configuration files useful when troubleshooting AFA.

File Name

Description

Location
algosec-support.zip

An archive file that includes the following report and general log files:

  • fa-history

  • fa-install.log

  • ht-fa-history

  • log.html

  • fwa_monitor.history

Note: The fwa_monitor.history file may be missing if the file report has a status of FAILED, or if you encounter problems during the installation or licensing stages.

$HOME/algosec/firewalls/<job-name>/

Where <job-name> is the Job Name of the report.

The Job Name consists of the user login name followed by a hyphen and an integer.

Example: afa-3
algosec-support-gui.zip

An archive file that includes:

  • fa-history
  • fa-install.log
  • ht-fa-history
  • map.sqlite
  • dump_nat_data

Download from AFA.

For details, see Download general log files.
log.html

The report log file.

Note: This file may be missing if the file report has a status of FAILED.

$HOME/algosec/firewalls/<job-name>/

For details, see:

algosec-support-full-ENTITY_NAME.zip

Full support data files which include:

  • report log files
  • full firewall configuration

Download from the device report.

For details, see Download full support files.

algosec-support-full-ENTITY_NAME-withlogs.zip

Full support data files which include:

  • report log files
  • full firewall configuration
  • traffic logs

Download from the device report.

For details, see Download full support files.
messages

All syslog messages. (see AFA analysis syslog messages).

/var/log/
fa-install.log

The AFA installation log

 /var/log/
fa-history

The AFA application's history file.

$HOME/

This file is hidden by default. To view, run:

ls -a $HOME/.fa-history

ht-fa-history

The Web interface's log file.

$HOME/public_html/algosec/

This file is hidden by default. To view, run:

ls -a $HOME/public_html/algosec/.ht-fa-history

map.sqlite

The database of the map.

 $HOME/.fa/map.sqlite
dump_nat_data

Dump of NAT related tables.
index.html

The report main index file. This serves as the log file if analysis failed.

 $HOME/algosec/firewalls/<job-name>/

Note: You'll need to access the log files directly if the ASMS web interface isn't available, or if the algosec-support.zip archive is missing. This may happen if a report has failed, or if you've encountered issues during installation or licensing.

For more details, see:

View report log files

Report log files are accessed from a specific AFA report.

Do the following:

  1. View the report. For details, see AFA reports.

  2. In the report menu, click Policy.

  3. In the Report Information area, click the Log File link.

The log file appears. All messages are prefixed with one of the following severity tags:

Severity Level

Description

Info

Normal information messages and notification of events. No user action is required.

Warning

AFA took corrective action to remedy a problem that was encountered.

Usually, no user action is required unless the report failed to generate, in which case the log file should be sent to AlgoSec Technical Support.

For more details, see Troubleshooting.

Error

A problem that prevented the report from being generated occurred.

Contact AlgoSec Technical Support. For more details, see Troubleshooting.

Fatal

A severe error condition required an immediate halt to the report generation process.

Contact AlgoSec Technical Support. For more details, see Troubleshooting.

Download report log files

Report log files are accessed from a specific AFA report.

Do the following:

  1. View the report. For details, see AFA reports.

  2. In the report menu, click Policy.

  3. In the Report Information area, click AlgoSec Support File.

The zip file is downloaded to your computer.

Download full support files

Full support files are accessed from a specific AFA report.

Do the following:

  1. View the report. For details, see AFA reports.

  2. In the report menu, click Policy.

  3. In the Report Information area, click one of the following:

    • Full Support Data with traffic logs (Large)

    • Full Support Data

The zip file is downloaded to your computer.

Download general log files

General log files are useful for troubleshooting interface-related issues.

Do the following:

  1. In the toolbar, click your username, and select Info.

  2. In the Info dialog, click Download Support Files.

  3. Click Download Support Files.

The algosec-support-gui.zip file downloaded to your computer. It contains the following files:

    • catalina.out
    • configuration_access_log.<date>.txt
    • dump_nat_data
    • fa-history
    • fa-install.log
    • fa/map.sqlite
    • fwa_monitor.history
    • ha-logs.tgz
    • ht-fa-history
    • localhost_access_log.<date>.txt
    • log.html
    • ms-backuprestore.log
    • ms-batch-application.log
    • ms-configuration.log
    • ms-devicemanager.log
    • ms-mapDiagnostics.log
    • ms-watchdog.log
    • ms-multipush.log