There are two recent improvements to monitoring and troubleshooting capabilities in Secure Access:

Traceroute Support Through Secure Access Service Chain

This feature is an improvement to troubleshooting capabilities for Secure Access by enabling ICMP traceroute for RAVPN and Branch connections to public and private destinations. Customers have been using traceroute to isolate connectivity and performance issues on the data path. With this releasee customers can initiate an ICMP traceroute from the endpoint and have the per hop visibility to the public or private destination.

Supported Scenarios:

• ICMP, UDP, TCP based traceroute from RAVPN client to Internet
• ICMP, UDP, TCP based traceroute from RAVPN client to Private App
• ICMP, UDP, TCP based traceroute from a client in Branch to Internet
• ICMP, UDP, TCP based traceroute from a client in Branch to Private App

Flow Logs in S3 Uploads

Secure Access added flow information as part of the firewall logs including new fields listed below :

• first packet timestamp—The timestamp when the first packet of the session was received in UTC in seconds.
• last packet timestamp—The timestamp when the last packet of the session was received in UTC in seconds.
• packets sent—The number of packets sent during the session.
• packets received—The number of packets received during the session.
• bytes sent—The number of bytes sent during the session.
• bytes received—The number of bytes received during the session.
• fw event ID—The ID of the firewall event.