Hyper Converged Infrastructure (HCI/aSV)

Sangfor HCI and aSV provide a unified infrastructure combining compute, storage, networking, and built-in security to simplify deployment, operations, and services.
{{ $t('productDocDetail.guideClickSwitch') }}
{{ $t('productDocDetail.know') }}
{{ $t('productDocDetail.dontRemind') }}
6.11.1R1
Hyper Converged Infrastructure (HCI/aSV) {{ breadTitle }} User Manual aSecurity Configuration Guide Security Settings Troubleshooting
{{sendMatomoQuery("Hyper Converged Infrastructure (HCI/aSV)","Troubleshooting")}}

Troubleshooting

{{ $t('productDocDetail.updateTime') }}: 2026-01-05

Description

This feature allows you to troubleshoot network disconnections or service or application inaccessibility if access traffic is blocked by the cyber attack protection module due to improper policy configuration. Currently, precise traffic analysis and global passthrough modes are supported.

Precise traffic analysis: Data packets dropped due to the firewall policy are obtained based on the specified rules, which can be used for analysis of blocked access.

Global passthrough: All firewall policies are ineffective within the specified scope. This mode is applicable in the case when the firewall policy that blocks the business access cannot be identified. It disables global firewall policies to ensure the proper connection of the business network.

Prerequisites

N/A

Precautions

  1. Precise traffic analysis will be automatically disabled 1 hour after it is enabled.
  2. You can start only one precise traffic analysis task at a time.

Steps

  1. Precise traffic analysis (recommended): Go to Security Settings > Troubleshooting, select Precise Traffic Analysis for Mode, set Source IP or Destination IP, and then click Enable.

  1. Global passthrough (use with caution): Go to Security Settings > Troubleshooting, select Global Passthrough for Mode and click Enable.

If the global passthrough mode is enabled, all cyber attack protection policies become ineffective. Operate with caution.