http://Hi Karthik:
I take it the issue is not seeing it all of teh time versus not seeing at all.
Counting/Recording inconsistency issues can be difficult and time consuming to resolve. I attached two draft documents that may help. If you are seeing transactions sometimes when recording and other times not, then I would check:
- SSL decode failure rates/cipher suites
- Traffic quality such as out of order packets, empty packets, going through a different set of servers, not seeing the round trip etc See if any patterns show up
I would have my switch connection do the filtering followed by MTP and then TIM.
Once you add a Web Server filter, then have to explicitly add them all.
If you see the transaction (HTTP Request and Response in the TIM log), it should be able to record
This likely will be a case. But I hope this is a good start.
Thanks
Hal German