ProSecure Web/Email Security Threat Management (STM) Appliance

Note:

The report includes only quarantined spam emails that contain the email address that is specified in the Send to field.

4.

Click Send Report.

The report provides summary information such as time, sender, recipient, subject, and size, and a retrieve link. The user can retrieve an individual email by clicking the internal or external retrieve link for the email. The presence of an external retrieve links (see the red box in the following figure) depends on the setting of the Set Public Host/IP Address and Port

check box on the Distributed Spam Analysis screen (see

Configuring Distributed Spam

Analysis

on page 102).

Figure 122.

Using Diagnostics Utilities

The STM provides diagnostic tools that help you analyze traffic conditions and the status of the network. Two sets of tools are available:

•

Network diagnostic tools. These tools include a ping utility, traceroute utility, and DNS

lookup utility.

•

Traffic diagnostic tools. These tools allow you to perform real-time, per-protocol traffic

analysis between specific source and destination addresses and let you generate reports on network usage in your network.

Note:

For normal operation, diagnostic tools are not required.

To display the Diagnostics screen, select Monitoring > Diagnostics from the menu. To facilitate the explanation of the tools, the Diagnostics screen is divided and presented in this

manual in three figures (the following figure,

Figure 125

on page 217, and

Figure 126

on page 218).

Chapter 6. Monitoring System Access and Performance | 215

ProSecure Web/Email Security Threat Management (STM) Appliance

Using the Network Diagnostic Tools

This section discusses the Ping or Trace an IP Address section, the Perform a DNS Lookup section, and the Test URL section of the Diagnostics screen:

Figure 123. Diagnostics, screen 1 of 3

Sending a Ping Packet

Use the ping utility to send a ping packet request to check the connection between the STM and a specific IP address. If the request times out (no reply is received), it usually means that the destination is unreachable. However, some network devices can be configured not to respond to a ping. The ping results are displayed on a new screen; click Back on the

Windows menu bar to return to the Diagnostics screen.

To send a ping:

1.

Locate the Ping or Trace an IP Address section on the Diagnostics screen. In the Host field, enter the IP address or host name that you want to ping.

2.

Click the Ping button. The results of the ping are displayed below the Host field.

Tracing a Route

A traceroute lists all routers between the source (the STM) and the destination IP address.

To send a traceroute:

1.

Locate the Ping or Trace an IP Address section on the Diagnostics screen. In the Host field, enter the IP address or host name for which you want trace the route.

2.

Click the Traceroute button. The results of the traceroute are displayed below the Host field.

216 | Chapter 6. Monitoring System Access and Performance

ProSecure Web/Email Security Threat Management (STM) Appliance

Looking Up a DNS Address

A Domain Name Server (DNS) converts the Internet name (for example, www.netgear.com) to an IP address. If you need the IP address of a Web, FTP, mail, or other server on the

Internet, request a DNS lookup to find the IP address.

To look up a DNS address:

1.

Locate the Perform a DNS Lookup section on the Diagnostics screen. In the Domain

Name field, enter a domain name.

2.

Click the Lookup button. The results of the lookup action are displayed below the Domain

Name field.

Testing a URL

Testing a URL allows you to verify that the STM can connect to the Internet. The test performs a DNS lookup and captures the HTTP page.

To test a URL:

1.

Locate the Test URL section on the Diagnostics screen. In the URL field, enter a URL.

2.

Click the Wget button. The results of the URL test are displayed below the URL field:

Figure 124.

Using the Realtime Traffic Diagnostics Tool

This section discusses the Realtime Traffic Diagnostics section of the Diagnostics screen:

Figure 125. Diagnostics, screen 2 of 3

You can use the realtime traffic diagnostics tool to analyze traffic patterns with a network traffic analyzer tool. Depending on the network traffic analyzer tool that you use, you can find

Chapter 6. Monitoring System Access and Performance | 217

ProSecure Web/Email Security Threat Management (STM) Appliance

out which applications are using most bandwidth, which users use most bandwidth, how long users are connected, and other information.

To use the realtime traffic diagnostics tool:

1.

Locate the Realtime Traffic Diagnostics section on the Diagnostics screen. Select one or more check boxes to specify the protocols for which you want to capture the traffic flow.

The check boxes that you can select are HTTP, SMTP, POP3, IMAP, and FTP.

2.

In the Source IP Address field, enter the IP address of source of the traffic stream that you want to analyze.

3.

In the Destination IP Address field, enter the IP address of the destination of the traffic stream that you want to analyze.

4.

Click Start. You are prompted to save the downloaded traffic information file to your computer; however, do not save the file until you have stopped capturing the traffic flow.

5.

When you want to stop capturing the traffic flow, click Stop.

6.

Select a location to save the captured traffic flow. (The default file name is diagnostics.result.dat.) The file is downloaded to the location that you specify.

7.

When the download is complete, browse to the download location you specified and verify that the file has been downloaded successfully.

8.

Send the file to NETGEAR Technical Support for analysis.

Gathering Important Log Information and

Generating a Network Statistics Report

When you request support, NETGEAR Technical Support might ask you to collect the debug logs and other information from your STM.

This section discusses the Gather Important Log Information section, Network Statistics

Report section, and Reboot the System section of the Diagnostics screen:

Figure 126. Diagnostics, screen 3 of 3

218 | Chapter 6. Monitoring System Access and Performance

ProSecure Web/Email Security Threat Management (STM) Appliance

Gathering Important Log Information

To gather log information about your STM:

1.

Locate the Gather Important Log Information section on the Diagnostics screen. Click

Download Now. You are prompted to save the downloaded log information file to your

computer. The default file name is importantlog.gpg.

2.

When the download is complete, browse to the download location you specified and verify that the file has been downloaded successfully.

Generating Network Statistics

The network statistic report provides a detailed overview of the network utilization in the STM managed network environment. The report allows you to see what consumes the most resources on the network.

To generate the network statistic report:

Locate the Network Statistics Report section on the Diagnostics screen. Click Generate

Network Statistics. The network statistic report is sent in an email to the recipient that you

have configured on the email Notification Server screen (see

Configuring the Email

Notification Server

on page 176).

Restarting and Shutting Down the STM

You can perform a remote restart, for example, when the STM seems to have become unstable or is not operating normally.

Note:

Restarting breaks any existing connections either to the STM (such as your management session) or through the STM (for example,

LAN users accessing the Internet). However, connections to the

Internet are automatically reestablished when possible.

To restart the STM:

Locate the Restart & Shutdown section on the Diagnostics screen (this section is not shown on any of the Diagnostics screen figures in this manual). Click the Restart button. The STM restarts. (If you can see the unit: The reboot process is complete when the Test LED on the front panel goes off.)

Note:

See also

Updating the Software

on page 71.

Chapter 6. Monitoring System Access and Performance | 219

ProSecure Web/Email Security Threat Management (STM) Appliance

Note:

For the STM150 only, there is an alternate way to restart: Press the

Power button on the rear panel of the STM150 (see

Rear Panel

STM150

on page 20). The front panel Test LED flashes, and the

STM150 reboots.

To shut down the STM:

Locate the Restart & Shutdown section on the Diagnostics screen (this section is not shown on any of the Diagnostics screen figures in this manual). Click the Shutdown button. The

STM shuts down.

WARNING!

You can shut down the STM using the Web Management Interface, but you cannot start up the STM using the Web Management

Interface.

220 | Chapter 6. Monitoring System Access and Performance

7.

Troubleshooting and Using Online

Support

7

This chapter provides troubleshooting tips and information for the STM. After each problem description, instructions are provided to help you diagnose and solve the problem. For the common problems listed, go to the section indicated.

•

Is the STM on?

Go to

Basic Functioning

on page 223.

•

Have I connected the STM correctly?

Go to

Basic Functioning

on page 223.

•

I cannot access the STM’s Web Management Interface.

Go to

Troubleshooting the Web Management Interface

on page 224.

•

A time-out occurs.

Go to

When You Enter a URL or IP Address a Time-Out Error Occurs

on page 225.

•

I have problems with the LAN connection.

Go to

Troubleshooting a TCP/IP Network Using a Ping Utility

on page 225.

•

I want to clear the configuration and start over again.

Go to

Restoring the Default Configuration and Password

on page 227.

•

The date or time is not correct.

Go to

Problems with Date and Time

on page 228.

•

I need help from NETGEAR.

Go to

Using Online Support

on page 228.

Note:

The STM’s diagnostic tools are explained in

Using Diagnostics

Utilities

on page 215.

Chapter 7. Troubleshooting and Using Online Support | 222