Enable and capture the SSL proxy debug logs on Edge SWG
search cancel

Enable and capture the SSL proxy debug logs on Edge SWG

book

Article ID: 166084

calendar_today

Updated On:

Products

ProxySG Software - SGOS Advanced Secure Gateway Software - ASG ISG Proxy

Issue/Introduction

An SSLDebug Log has been requested by Broadcom support team.

Resolution

Please follow these steps when directed by Proxy Technical Support.

How to Get a SSL Proxy Debug Log:

  1. Navigate to the advanced HTTP console URL: https://<proxy-ip>:8082/sslproxy/setdebugmask

  2. Specify the debug masks. For most cases, select all available options.

  3. Afterwards navigate to the actual debug output page at https://<proxy-ip>:8082/sslproxy/Debug, or simply follow the Display SSL Proxy Debug Info link from the SetDebugMask console page. 

  4. Navigate to Set Debug Filter to filter the SSL proxy debug by a single client IP, a server IP, or both simultaneously.

  5. Clear the debug log and reproduce the issue related to the https url, once reproduced, quickly refresh the /sslproxy/Debug console URL (as it may get overwritten by logs for other urls). This will display the ssl proxy debug log that can be saved and shared with Broadcom support team for review.

Example Output:. 

6015.082 --- End Log [01/Oct/20xx:23:14:19 +0800] ---
5928.033 --- End Log [01/Oct/20xx:23:12:52 +0800] ---
4106.360 SSLW 96C52990 (2987C44): shutdown: SSL Worker previous state 3, error code 6, line 565
4106.360 SSLW 96C52990 (2987C44): Connect_to_server failed, reason=TE_CONNECT_ERROR_SOCKET_FAILURE
4101.360 SSLW 96C11990 (2987BD8): shutdown: SSL Worker previous state 3, error code 6, line 565
4101.360 SSLW 96C11990 (2987BD8): Connect_to_server failed, reason=TE_CONNECT_ERROR_SOCKET_FAILURE
4031.393 SSLW 96C52990 (2987C44): SSL Intercept URL: "ssl://#.#.#.#/"
4026.391 SSLW 96C11990 (2987BD8): SSL Intercept URL: "ssl://#.#.#.#:443/"
2267.826 SSLW 96C07990 (2987D88): shutdown: SSL Worker previous state 3, error code 6, line 565
2267.826 SSLW 96C07990 (2987D88): Connect_to_server failed, reason=TE_CONNECT_ERROR_LOOP_CONNECTION
2267.824 SSLW 96C07990 (2987D88): SSL Intercept URL: "ssl://#.#.#.#:443/"
2267.819 SSLW 96C07990 (2987D88): shutdown: SSL Worker previous state 3, error code 6, line 565
2267.819 SSLW 96C07990 (2987D88): Connect_to_server failed, reason=TE_CONNECT_ERROR_LOOP_CONNECTION
2267.818 SSLW 96C07990 (2987D88): Allocating external session cache for ctx 40C75220
2267.815 SSLW 96C07990 (2987D88): SSL Intercept URL: "ssl://#.#.#.#:443/"
0019.571 SSL-map Proprietor (297F4D8): Index for ctx extra data is 1

Additional Information

NOTE: The events of these debug logs are ordered in time, from bottom to upwards. 

Powered by Wolken Software