Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Pablo4391
New Contributor

Monitoring VPN Ipsec Phases 2 FortiOs 5.6

Buenas, estoy teniendo dificultados para ver el estado de las phases 2 de las VPN IPSec en la nueva version de Forti OS 5.6; ya que en Monitor>IPSec Monitor sólo muestra el estado de conexion de las phases 1; cuando en versiones anteriores se mostraba el estado de todas las phases (tanto 1 como 2), adjunto capturas. Como puedo hacer para el fortiOs 5.6 ver el estado de cada una de las phases 2?

 

Segun la doc, sacaron dicha funcionalidad:

 

IPsec monitoring pages now based on phase 1 proposals not phase 2 (304246) The IPsec monitor, found under Monitor > IPsec Monitor, was in some instances showing random uptimes even if the tunnel was in fact down. Tunnels are considered as "up" if at least one phase 2 selector is active. To avoid confusion, when a tunnel is down, IPsec Monitor will keep the Phase 2 Selectors column, but hide it by default and be replaced with Phase 1 status column.

 

Alguien sabe como verlo? 

Adjunto capturas de como se veía antes y como se ven ahora.

Comparativa FortiOs 5.6 vs 5.2.jpg                 

Loiacono Pablo ---------------------------------------------------------------------------- Good Morning, I'm having difficulty seeing the status of phases 2 of IPSec VPNs in the new version of Forti OS 5.6; Since in Monitor> IPSec Monitor only shows the connection state of phases 1. In previous fortiOs they showed the status of all phases (both 1 and 2), attached captures. How can I see in fortiOs 5.6 the status of each of phases 2?

1 REPLY 1
Iescudero
Contributor II

Buenas!

no se ve la captura, creo recordar que en la 5.2 se veia en la config del tunel si era un tunel ipsec dialup.

sino, un workaround es verlo por cli:

diagnose vpn tunnel list name "VPNAREVISAR"

con esto podes ver la cantidad de trafico:

diagnose vpn ipsec status

 

Espero que sirva de algo

 

Saludos!

 

 

Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors