FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
Wallerson
Staff
Staff
Article Id 338436
Description This article describes how to use ADVPN Shortcut column in the VPN logs.
Scope FortiGate v7.2 and above.
Solution

The ADVPN Shortcut column is hidden by default. It is useful for troubleshooting in the Spokes to identify which tunnel is the shortcut. 

In large environments where the spokes have more redundant links and communication with other Spokes, it may be difficult to identify the logs which are shortcuts.

 

  1. In the Spoke GUI, go to the VPN Events log.
  2. 'Right-click on any column and choose ADVPN Shortcut. Select 'Apply':

 

01.png

 

  1. The column ADVPN Shortcut is displayed. The flag '1' will be displayed for all shortcuts established Spoke-to-Spoke. The flag '0' means not-shortcut tunnel:

 

02.png

 

  1. It is possible to filter the flag '1' and check only the negotiation steps of the shortcut tunnels:

 

3.png

 

  1. It is important to mention that on the HUB side, the ADVPN Shortcut column will always display '0' because the shortcuts are established between spokes only. The tunnel HUB-to-Spoke is not a shortcut.
Contributors