Skip to main content

Check out Interactive Visual Stories to gain hands-on experience with the SSE product features. Click here.

Skyhigh Security

Troubleshooting Connectivity Issues with Digital Experience Capabilities


While using the SSE Solution which includes, SWG, Private Access, Cloud Firewall,  and CASB, customers often face issues related to application performance, network performance - slow and inconsistent connectivity to Private Applications, web, and sanctioned applications, service performance issues across the network, etc. This leads to a bad user experience thereby affecting the overall customer journey with the Product. These issues may occur irrespective of the customer's location and the applications or websites that the customers are trying to access. 

Digital Experience Capabilities in Skyhigh SSE

The Digital Experience Capabilities present in Skyhigh SSE solution empower the end users/administrators to Troubleshoot the Connectivity Issues efficiently. It also enables a remote administrator to address the majority of the IT related challenges of the end user.

With the Digital Experience Capabilities present in Skyhigh SSE, the user/admin can identify the root cause of the network/application/endpoint problems quickly and effectively.

When the traffic traverses from the user endpoint system to the destination (it can be Web, Private Applications, or Sanctioned Applications) the below information is captured for all the segments of the traffic (Endpoint to POP, POP to POP, and POP to Application). Administrators can analyze this Time-Stamp information to identify the network or application related issues.  

  • Transaction Time: Transaction Time represents the overall processing time for a request i.e., the total time taken by the traffic to reach the destination from the SWG or SSE cloud and vice-versa. This includes the time duration for Anti-Virus scanning and network communication. 
  • Processing Time: Total Processing Time is the time taken by the web proxy rule engine to process the forwarded packets. This includes the waiting time for the filter. This is also called SWG Internal Processing Time.
  • Time to First Byte From Server: This is the time difference between the Time of the last request byte sent to the server and the first response byte received from the server. This represents server side communication latency and helps gauge the network and server responsiveness.
  • Time to Last Byte From Server: This is the time from First Byte from Server to Last Byte from Server: This is a gauge of the server side bandwidth.


You can view the above information in the detailed logs of SWG and Private Access.

  • To view the detailed logs in the Private Access:
    • Login to the SSE Console > Analytics > Private Access > Private Access Users.
  • Under Private Access Users section, you can see all the listed users. To view the details, you need to click on the value present in the PA Connections column. Once you click on the above mentioned values, you are redirected to a PA Connections Detail Page, where you will be able to view the below details along with the Transaction Time, Processing Time, Time to First Byte from Server, Time to Last Byte from Server.
  • User-Name
  • Host
  • Application Name
  • Protocol
  • Application Group
  • Connector
  • Device Profile
  • Download and Upload Speed
  • App Connection Status
  • PA Policy
  • Access/Block Reason

NOTE: Similar details are available for the PA users if they navigate to the SSE Console > Analytics > Private Access > Private Access Usage section.

  • To export data in the PA Connections Detailed Page, click on the Export CSV option.
  • For Web Traffic going through the SWG, you can analyse and identify;
    • The total time spent from the time the traffic entered the SWG for the destination and when the response traffic leaves the SWG back to the client. This provides the total transaction time.
    • The Processing time indicates the amount of time the traffic spent in the SWG.
    • The time to first byte from the server & time to last byte from the server indicates the time taken by the traffic to reach the destination once the traffic leaves the SWG.
  • End-Users/Administrators can analyze the transaction time to identify the issues related to network efficiency between the SWG/SSE and the destination. 
  • End-Users/Administrators can monitor the processing time to identify if there is any slowness observed in the SWG.
  • The time to first byte from the server & time to last byte from the server, indicates to the customer, the time taken by the traffic to reach the destination once the traffic leaves the SWG. This can be monitored to identify if there is any network related latency.
  • Was this article helpful?