I am trying to troubleshoot an error in a traffic log regarding cert decryption. I have found an article from PA on it: https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000boONCAY but I am unable to reproduce the steps to help in troubleshooting. The fourth bullet says 'Dataplane Debug shows the following..." and I would like to see a log just they show in the example but I'm not sure where that is. The log features it references I'm familiar with for packet capture but packet capture doesn't look the example they provided.
Can someone point me in the right direction of how I can reproduce that screen?
If you are at the point where you believe you need to be enabling dataplane debugs you should open a TAC case for their assistance. There's a reason that document is kept internal; depending on platform and existing system load you can run into serious issues enabling debug logs without knowing exactly what your doing that can cause noticeable performance disruptions.
The issue that you are seeing is almost always going to be caused by certificate structure or ciphers.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!