Agent Proxy has the ability to capture a rolling window of the most recent network traffic on your host’s network devices, a feature referred to as Debug Network Tracing. When enabled, Agent Proxy:
-
writes a package capture file (
.pcap) to the local disk whenever it encounters certain errors (currently limited to TLS “certificate unknown” occurrences). -
writes a
.pcapfile with the most recent network packets for all devices when receivingPOST /write-pcap-fileon the HTTP service server endpoint (defaults tolocalhost:51234unless configured otherwise).
With this information, you can review network traffic information to locate the error and perform remediation steps to resolve the issue.
Configuring Debug Network Tracing for Agent Proxy
Section titled “Configuring Debug Network Tracing for Agent Proxy”Configuring Agent Proxy to capture network traffic information requires you to perform the steps listed below.
-
Go to the Virtual Machine installation page in the Aembit technical documentation.
-
Follow the steps described in the Agent Proxy Installation section to install Agent Proxy.
-
When installing Agent Proxy, supply the following environment variable to the Agent Proxy VM installer:
AEMBIT_DEBUG_MAX_CAPTURED_PACKETS_PER_DEVICE=<N>
- Where
Nis the number of packets you would like to have Agent Proxy capture, while also determining the size of the rolling window. For example, if you setNto2000, this means that Agent Proxy will monitor and keep a history of the last 2000 network packets for each IPv4 device.
Your command should look like the example shown below.
sudo AEMBIT_AGENT_CONTROLLER=http://<AGENT CONTROLLER HOST>:5000 AEMBIT_DEBUG_MAX_CAPTURED_PACKETS_PER_DEVICE=2000 [...] ./install- Agent Proxy debug network tracing is now enabled, and you are able to review network traffic on your devices.