Summary


This document provides information on how to troubleshoot SIlo connections using Wireshark to inspect packets. Prior to using this document, please verify that you have whitelisted the IPs found in the Details about Firewall Rules Needed for Silo Access support article

Wireshark is a network analysis tool which captures packets in real time and display them in human-readable format. Wireshark includes filters, color-coding and other features that let you dig deep into network traffic and inspect individual packets. You can use these filters to segment out Authentic8 traffic to troubleshoot the connection that is taking place.

You can download Wireshark for Windows or Mac OS X from their official website.

After downloading and installing Wireshark, you can launch it and click the name of an interface under Interface List to start capturing packets on that interface. For example, if you want to capture traffic on the wireless network, click your wireless interface.

In order to filter for Authentic8 traffic, you will want to create a filter. The following filter can be used to look for all Authentic8 IPs* (omit the quotes):

"ip.addr==54.225.143.10||ip.addr==54.244.220.33||ip.addr==104.197.151.226||ip.addr==8.34.212.21||ip.addr==104.198.108.190||ip.addr==104.198.102.199||ip.addr==104.196.50.57||ip.addr==104.196.45.238||ip.addr==104.155.196.214||ip.addr==104.155.196.156||ip.addr==104.199.169.130||ip.addr==104.199.158.183||ip.addr==104.155.106.249||ip.addr==130.211.64.174"

*These IPs may change so please refer to the support article: Details about Firewall Rules Needed for Silo Access for the most updated list of IPs.

Once your filter is in place, you can start capturing packets however you will not see anything in Wireshark until Silo is launched.

Go ahead and launch Silo now. You should see Wireshark begin to display rows of captured data. This data can be used to troubleshoot your connection.

During the launch process, you will want to look for 2 certificate exchanges. Here is an example of one of the certificate exchanges.



The first certificate exchange will occur when Silo is connecting to our launch servers.

The second certificate exchange will occur moments later when Silo is connecting to the app servers.

Shortly after, Silo should show the PIN Pad or you will be authenticated into Silo, depending if SAML SSO is enabled.

Additional Notes


Please Contact Authentic8 Support if you have additional questions or concerns.