- Products
- Network Security
Next Generation FirewallNext-generation firewall for SMB, Enterprise, and Government
Security ServicesComprehensive security for your network security solution
Network Security ManagerModern Security Management for today’s security landscape
- Advanced Threat Protection
Capture ATPMulti-engine advanced threat detection
Capture Security applianceAdvanced Threat Protection for modern threat landscape
- Access Security
Cloud Edge Secure AccessDeploy Zero-Trust Security in minutes
Secure Mobile AccessRemote, best-in-class, secure access
Wireless Access PointsEasy to manage, fast and secure Wi-FI
SwitchesHigh-speed network switching for business connectivity
- Email Security
Email SecurityProtect against today’s advanced email threats
- Cloud Security
Cloud App SecurityVisibility and security for Cloud Apps
Cloud Firewall (NSv)Next-generation firewall capabilities in the cloud
- Endpoint Security
Capture ClientStop advanced threats and rollback the damage caused by malware
Content Filtering ClientControl access to unwanted and unsecure web content
- Product Widgets
- Product Menu Right Image
- Network Security
- Solutions
- Solutions Widgets
- Solutions Image Widgets
- Solutions Widgets
- Partners
- Partner Widgets
- Partners Image Widgets
- Partner Widgets
- Support
- Support Widget
- Support Image Widgets
- Support Widget
- Products
- Network Security
- Next Generation FirewallNext-generation firewall for SMB, Enterprise, and Government
- Security ServicesComprehensive security for your network security solution
- Network Security ManagerModern Security Management for today’s security landscape
- Advanced Threat Protection
- Capture ATPMulti-engine advanced threat detection
- Capture Security applianceAdvanced Threat Protection for modern threat landscape
- Access Security
- Cloud Edge Secure AccessDeploy Zero-Trust Security in minutes
- Secure Mobile AccessRemote, best-in-class, secure access
- Wireless Access PointsEasy to manage, fast and secure Wi-FI
- SwitchesHigh-speed network switching for business connectivity
- Email Security
- Email SecurityProtect against today’s advanced email threats
- Cloud Security
- Cloud App SecurityVisibility and security for Cloud Apps
- Cloud Firewall (NSv)Next-generation firewall capabilities in the cloud
- Endpoint Security
- Capture ClientStop advanced threats and rollback the damage caused by malware
- Content Filtering ClientControl access to unwanted and unsecure web content
- Product Widgets
- Product Menu Right Image
- Network Security
- Solutions
- Solutions Widgets
- Solutions Image Widgets
- Solutions Widgets
- Partners
- Partner Widgets
- Partners Image Widgets
- Partner Widgets
- Support
- Support Widget
- Support Image Widgets
- Support Widget
How to run a packet capture for SRA troubleshooting
03/26/2020 
12 People found this article helpful
43,543 Views
Description
In order to run this packet capture a few conditions must be met.
- The SRA is on a different Zone behind the firewall such as DMZ
- The SRA and internal LAN are on a different subnet
*If the SRA and the LAN are on the same subnet then a packet capture can be ran on a switch.
Resolution
Step 1. Log into the SonicWall firewall and go to system | packet monitor
Step 2. Click on the configure option to bring up the packet capture configuration window.
Step 3. When the window comes up focus on 3 windows Monitor Filter, Display Filter, and Advanced Monitor Filter.
Step 4. In Monitor Filter set the packet capture for source being the client and destination being the resource that is being accessed. A port can be added for a more specific packet capture.
Step 5. In display Filter leave the fields blank unless trying to remove data and only concentrate on a particular protocol or IP
Step 6. Verify all the boxes on Advanced Monitor Filter are checked except for the last 2 check boxes.
Once the packet capture is configured press on the enable option.
Step 7. Once configure connect with the client Mobile Connect or Netextender and note the virtual IP the client has been given.
Step 8. On the client computer run a ping command to a server on the network behind the SRA.
Step 9. Refresh the packet capture (the packet capture tool does not refresh automatically) and verify that packets are being forwarded.
Step 10. If the packet capture is displaying a drop it will be seen in red letters. Under packet details scroll down to see the drop codes. If an explanation is not seen. Please follow the link below to see what the drop packets mean. The drop packets are specific to the firewall firmware revision.
Below is a link to our KB for the drop codes.
https://support.sonicwall.com/pt-br/kb/sw9820
Related Articles
- How to secure Virtual Office portal from all external access
- NetExtender users fail to get connected throwing an Error Failed to get vpn protocol on firmware 10.2.1.2 or above due to misconfigured protocol
- Is SRA/SMA appliance vulnerable to CVE-2016-2183 and CVE-2016-5915?
YES
NO