Before doing the procedure below, make sure that the servers, clients, and Cloud Edge device have their time synchronized. Connect the PC to the management port of Cloud Edge, then log into the Cloud Edge On-Premises Console. By default, the IP address of the management port is 192.168.252.1. Below are the default credentials:
Username: admin
Password: adminCloudEdge
If the Quick Setup page appears, click Cloud Edge On-Premises Console link.
To collect the details:
- Enable the debug mode to get the detailed log output. Enabling the debug mode will restart the scanning daemon, which takes about two (2) minutes to complete. After you enable the debug mode, kindly wait for three (3) minutes before you replicate the issue.
- Go to Administration > Diagnostics.
- Click Diagnostic Files.
- Enable Debug Mode.
- Get the packet capture.
- Go to Administration > Diagnostics.
- Click Packet Capture.
- Select all the interfaces and click Start Capture.
- Replicate the issue and record the following information. At the same time, record the time table. The time when the issue occurred is very important to analyze the logs. Sometimes browser cache causes web access problem. Kindly clear the browser cache beforehand.
- Web-related issue
- Time of issue occurrence
- Client IP address
- Destination URL
- Screenshot where the problem happened (e.g. error page)
- Email-related issue
- Time of issue occurrence
- IP address of email client
- Email details (e.g. subject, sender, recipient)
- Outgoing mail server configuration (e.g. host name, encrypted method)
- Incoming mail server configuration (e.g. host name, account type such as POP3, IMAP, encrypted method)
- Mail sample in EML or MSG format
- Screenshot where the problem happened (e.g. error page)
- Web-related issue
- Stop the packet capture.
- Go to Administration > Diagnostics.
- Select Packet Capture.
- Click Stop Capture.
You can see several files are created, which are the same as interface number. The file name's format is "capture-ethx-YYY-MM-DD.xxxxxxxxxx.xx.pacap.tar.gz". Get these files and send to us for further analysis.
- Get Diagnostic files.
- Go to Administration > Diagnostics.
- Select Diagnostics Files.
- Set the Time Period to Last 7 days.
- Tick all categories and click Generate File.
- Disable Debug Mode under Administration > Diagnostics > Diagnostic Files.
- Collect additional logs.
I. Audit Log
- Log in to Cloud Edge On-Premises console.
- Go to Administration > Device Logs > Audit Log.
- Set the Time Period to Last 30 days and add all accounts to Selected Accounts.
- Click Query and get logs using the Export to CSV button.
II. Policy Enforcement
- On the console, go to Analysis & Reports > Policy Enforcement.
- Click the Raw log query icon on the upper-right corner, and click Select Column.
- Enable all the check boxes and click Export to CSV.
III. Internet Security
- On the console, go to Analysis & Reports > Internet Security.
- Click the Raw log query icon on the upper-right corner, and click Select Column.
- Enable all the check boxes and click Export to CSV.
- Send the following to Trend Micro Technical Support.
- Detailed explanation of the issue (e.g. "When I access _ttp://xxx.xxx/xxx, I see the error message 'Page not found' in the browser - Internet Explorer ver.xxx")
- For web delay issue, consider to get a video
- Time when the issue occurred
- Network structure image (including the IP address of each computer in the structure)
- Diagnostic file
- Browser name and version
- Screenshot of browser page error
- Screenshot of Gateway Information page (located under Cloud Edge console > Gateways > Cloud Edge > Gateway Information)
- Backup file (To get this, go to Cloud Edge console > Administration > Maintenance. Click Create Backup Now and then click Download.)
- Scenario when the problem started
- If there is any system change before the issue
- If the issue occurred in a specific device or all devices
- If the issue occurred in a specific URL or all URLs
- If the issue occurred in a specific browser or all browsers
- If the issue occurred even without Cloud Edge