Cisco Systems OL-16647-01 Network Router User Manual

Open as PDF

of 1230

B-12

Cisco ASDM User Guide

OL-16647-01

Appendix B Troubleshooting

Other Troubleshooting Tools

The security appliance provides other troubleshooting tools that you can use. This section includes the

following topics:

• Viewing Debug Messages, page B-12

• Capturing Packets, page B-12

• Viewing the Crash Dump, page B-12

• TACACS+ Server Lockout, page B-12

• Verifying that Server Authentication and Authorization are Working, page B-12

• User's Identity not Preserved Across Contexts, page B-13

Viewing Debug Messages

Because debugging output is assigned high priority in the CPU process, it can render the system

unusable. For this reason, use debug commands only to troubleshoot specific problems or during

troubleshooting sessions with Cisco TAC. Moreover, it is best to use debug commands during periods

of less network traffic and fewer users. Debugging during these periods decreases the likelihood that

increased debug command processing overhead will affect system use. To enable debug messages, see

the debug commands in the Cisco Security Appliance Command Reference.

Capturing Packets

Capturing packets is sometimes useful when troubleshooting connectivity problems or monitoring

suspicious activity. We recommend contacting Cisco TAC if you want to use the packet capture feature.

See the capture command in the Cisco Security Appliance Command Reference.

Viewing the Crash Dump

If the security appliance crashes, you can view the crash dump information. We recommend contacting

Cisco TAC if you want to interpret the crash dump. See the show crashdump command in the Cisco

Security Appliance Command Reference.

TACACS+ Server Lockout

We recommend that, when configuring TACACS+ server command authorization, you do not save your

configuration until you are sure it works the way you expect. If you get locked out because of a mistake,

you can usually recover access by restarting the security appliance. If you are still locked out, see

Recovering from a Lockout, page 16-32.

Verifying that Server Authentication and Authorization are Working

To verify that the security appliance can contact an AAA server and authenticate or authorize a user, see

Testing Server Authentication and Authorization, page 14-18.

previous next

Top Automotive Device Types

Top Automotive Brands

Top Baby Care Device Types

Top Baby Care Brands

Top Car Audio & Video Device Types

Top Car Audio & Video Brands

Top Cellphone Device Types

Top Cellphone Brands

Top Communications Device Types

Top Communications Brands

Top Computer Device Types

Top Computer Brands

Top Fitness Device Types

Top Fitness Brands

Top Home Audio Device Types

Top Home Audio Brands

Top Household Appliance Device Types

Top Household Appliance Brands

Top Kitchen Appliance Device Types

Top Kitchen Appliance Brands

Top Laundry Appliance Device Types

Top Laundry Appliance Brands

Top Lawn & Garden Device Types

Top Lawn & Garden Brands

Top Marine Equipment Device Types

Top Marine Equipment Brands

Top Musical Instrument Device Types

Top Musical Instrument Brands

Top Outdoor Cooking Device Types

Top Outdoor Cooking Brands

Top Personal Care Device Types

Top Personal Care Brands

Top Photography Device Types

Top Photography Brands

Top Portable Media Device Types

Top Portable Media Brands

Top Power Tools Device Types

Top Power Tools Brands

Top TV and Video Device Types

Top TV and Video Brands

Top Videogame Device Types

Top Videogame Brands

Cisco Systems OL-16647-01 Network Router User Manual