Manual Chapter :
Troubleshooting an IPsecTunnel
Applies To:
Show VersionsBIG-IQ Centralized Management
- 5.3.0
Troubleshoot an unhealthy IPsec tunnel using performance statistics
Before you can troubleshoot the
tunnel using statistics:
- You must have configured BIG-IQ® to display statistics for your IPsec tunnel.
- You need to know the IP address or host name of the BIG-IP® devices that form the IPsec tunnel.
When you learn that an IPsec tunnel
is unhealthy (for example, your helpdesk might have opened a ticket), you can use the
IPsec performance statistics to troubleshoot the tunnel.
Note: If one end of the tunnel
uses a device other than a BIG-IP device, you can troubleshoot only that end of the
tunnel.
If you were not able to isolate the
cause of the issue, perform the task: Troubleshoot an unhealthy IPsec tunnel using
event logs.
Troubleshoot an unhealthy IPsec tunnel using event logs
Before you can troubleshoot a tunnel
by examining the IPsec event logs, you must have configured IPsec event logging. (See
Configure IPsec event viewing on the BIG-IQ for details.)
When you learn that an IPsec tunnel
is unhealthy (for example, your helpdesk might have opened a ticket), you can
troubleshoot the tunnel by examining the IPsec event logs.