Any chance one of you guys can write an SK on the TDERROR or get someone in R&D to do it?
It would be really useful to have that and close some gaps in the information around debug framework.
It is used in a lot of procedures!
Here is some supporting text from the CCTA training course manual:
NOTE: TDERROR is an internal Check Point mechanism to debug specific user mode processes. With TDERROR, a specific feature in a specific process with a specified level of importance can be debugged using the following syntax:
Level is an integer between 1 and 5. It indicates the amount of information desired, where Level 1 provides the least information and Level 5 provides the most information. To debug all available topics, use the syntax ALL as the debug topic.
And this is from the CCTE course:
TDERROR is a general debugging framework that Check Point- developed processes can use for extensive debugging.
With TDERROR, a specific feature in a specific process with a specified level of importance can be debugged using the following syntax:
Level is an integer between one and five. The level indicates the amount of information desired. A level of one provides very little information. A level of five provides an extensive amount of information.
To debug a policy installation, run the following commands:
fw debug fwm on TDERROR_ALL_INSTMGR=5
fw debug fwm on TDERROR_ ALL_INSTMGRFN=5
To stop the debug, run the following commands:
fw debug fwm off TDERROR_ ALL_ ALL=0
Use CTRL+C to stop the tail.
As you can see there is an example that uses the Topics INSTMGR and INSTMGRFN.
But there is no more detail on TDERROR and the actual 1 through 5 debug levels or the Topics, even though it is only two of the ?? topics that could possibly be used.