![]() Otherwise, you will need to work back through the stages to see where the problem is located. It is easiest to see if the final stage is successful first since if it is successful the other stages will be working properly. This section contains tips to help you with some common challenges of IPsec VPNs.Ī VPN connection has multiple stages that can be confirmed to ensure the connection is working properly. Set vpn-stats-log ipsec ssl set vpn-stats-period 300 To allow VPN tunnel-stats to be sent to FortiAnalyzer, configure the FortiGate unit as follows using the CLI: The FortiGate does not, by default, send tunnel-stats information. More accurate results require logs with action=tunnel- stats, which is used in generating reports on the FortiAnalyzer (rather than the tunnel-up and tunnel-down event logs). Other events, by default, will appear in the FortiAnalyzer report as “No Data Available”. S e nd i n g tunnel statistics to FortiAnalyzerīy default, logged events include tunnel-up and tunnel-down status events. Verify that the VP N activity event option is selected. For information about how to interpret log messages, see the FortiGate Log Message Reference.Ģ. ![]() For IPsec VPNs, Phase 1 and Phase 2 authentication and encryption events are logged. You can configure the FortiGate unit to log VPN events.
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |