Chapter 13 Tools

The admin could send packet inspection through the tools on system to confirm whether the external line quality of NG-UTM and DNS query are normal or not
Currently, there are several tools available for admin to use, including PING, Trace route, DNS query, Port Scan, Wake up, and SNMP. Among them, PING supports two addresses modes: IPV4 and IPV6.

13-1. Connection Test

13-1-1. PING

In most cases of network connectivity issues, people usually use the PING command (which is the same for both Windows and Linux) to check if their own network and the other party’s network are operational.
The PING command utilizes the ICMP protocol to send out specific-sized ICMP packets at regular intervals. Is also measure the response time from the other computer to determine if the network connection is functioning properly.
• Ping Setting:
PING testing tool and output information

Picture13-1 PING testing tool and output information

【Target IP or Domain】:The IPV4/IPV6 button in the menu can be switched for testing.
For IPV4, it is available to input either the IP address or the domain name under test, for example, 168.95.1.1 or www.hinet.net.
【Package Size】:The default size of ICMP protocol packets sent out each time is 32 bytes. The configurable range for packet size is from 1 to 9999 bytes.
【Count】:The default number of test packet sent out is 4 times. The configurable range for the number of packets is from 1 to 9999.
【Timeout】:The ICMP response timeout interval, which determines when a connection is considered time out, is set to 1second by default. The configurable range for this testing setting is from 1 to 9999.
【Using Interface & IP】:Select the interface and the source IP address to send out the test packet.
【Assign Gateway】:Specify which gateway to use for sending the test packets from this interface’s address.

13-1-2. Trace route

Trace route could reveal packet from the source to the destination network router’s IP address. When the Internet connection is down, besides using PING to check,
if you want to find out which routers or where exactly the connection is failing along the route to the destination, you would use the tool Traceroute. Currently, it only supports IPV4 addresses.
• Traceroute Setting:
Tracer route

Picture13-2 Tracer route testing tool and output information

【Target IP or Domain】:Input either the IP address or the domain name to be tested, for example: 168.95.1.1 or www.hinet.net。
【Package Size】:The default number of ICMP/UDP/TCP protocol packets sent each time is 40 Bytes, with a configurable range from 40 ~9999.
【Max. Next Hop】:The maximum number of routes that can be traced, the default number is 30. This range can be adjusted within a range of 1 to 255 routes.
【Wait Time】:The timeout interval for waiting for responses, if the response time exceeds this interval, it will be considered to disconnection. The default is 2 seconds, within a range of 2 to 9999.
【Tracing Methods】:Which communication protocols, ICMP/UDP/TCP, to use to send detection packets, the default choice is ICMP.
【Source Interface】:Select the interface through which to send the test packet and the IP address to carry it out.

13-1-3. DNS Query

To search the detailed information of DNS, you could search by the categories of DNS, like ANY、SOA、NS、A、AAAA、MX、CNAME、PTR.
The admin could use either the local machine or specific DNS servers for query purposes.
• DNS Query Setting:
DNS testing tool and output information

Picture13-3 DNS testing tool and output information

【Using DNS Server】:Choosing to use the DNS servers used by NG-UTM or manually input other DNS servers.
【Domain or IP to Query】:Entering the IP address or the domain name you want to query, for example: 168.95.1.1 or www.hinet.net。
Entering a domain name is considered forward lookup, while entering and IP address is considered reverse lookup.
【Query Type】:Search the information of various types of DNS, like ANY, SOA, NS, A, AAAA, MX, CNAME, PTR.

13-1-4. Port Scan

Using NG-UTM to scan if the remote computer open PORT that commonly used.
DNS testing tool and output information

圖13-4 DNS testing tool and output information

【Domain or IP to Scan】:Entering either the IP address or the domain name you want to query.
【Scan Serve】:Selecting Default Set or Define Port.
【Source IP】:Searching the Zone and IP address
【Result of search】:Ports that are open will be displayed as OK , not open will be displayed FAIL

13-1-5. IP Route

It displays the entire routing table of an NG-UTM for admin reference.

13-1-6. Interface Information

NG-UTM could display the address ranges bound within each Zone, along with user IP and MAC addresses.
Interface information

Picture13-5 Interface information

13-1-7. Wake Up

NG-UTM could execute Wake Up tasks for remote computers by entering the remote computer’s MAC address. Upon confirmation, the system automatically sends Wake Up packet to the remote computer.
Wake Up Setting

Picture13-6 Wake Up Setting

【Using Interface & IP】:Which interface does the computer belong to for executing Wake Up
【MAC Address】:To execute the MAC address of Wake Up computer, click image180

13-1-8. SNMP

NG-UTM use SNMP protocol to search the information of switch, including real-time flow or Vlan ID of each Port.
SNMP Query switch information

Picture13-7 SNMP Query switch information

【Switch IP】:Entering the IP address of the switch that you want to query
【Read permissions】:Requiring the password with Read permissions only, because it is just for executing.
【OID】:The data you want to query via SNMP is identified using OUD codes.
【Vlan ID】:Which Vlan the Switch belong to
Click image282 to look up the introduction of OID :
Search OID

Picture13-8 Search OID

13-2. Capture Packet

NG-UTM provides an automatic packet capture tool that records packets. After capturing packets, admin could view and download them from the “Completed List”
It is convenient for admin to analyze the packets while searching internet problems

13-2-1. Schedule List

Click image20 under the list to create a new schedule:
Capture Packet Setting

Picture13-9 Capture Packet Setting

【Enable】:If enable the packet capture function or not.
【Time Range】:Specify the time range for packet capture
【Interface】:Which Zone does the network packet capture interface belong to
【Protocol】:Capture all packets or specify only TCP, UDP, ICMP, ARP types
【Filter Condition】:2 modes available. In the basic mode, you could enter IP address or ranges, while in the advanced mode, you could enter the complete tcpdump command.
【pcap File Size (MB)】:The size of each recorded file ranges from 1 to 10MB.
【pcap File Num】:The total number of pcap File Num, setting range is from 1-100, ensuring to consider available storage space.
Based on the maximum calculation, 10MB * 100 = 1000MB = 1GB. The system must have 1GB of storage space available for storing captured packets. If multiple schedules are set to capture packets simultaneously, it’s essential to calculate the available space accordingly.
【pcap Length】:The maximum length of each packet captured is typically set to the standard network MTU, which is 1500 bytes.

13-2-2. Completed List

Successfully captured network packets will be displayed in this list, click image339 button to check detailed information and download this file to operator’s computer.
Capture Packet List

Picture13-10 Capture Packet List