VPN Troubleshooting Commands 

Document created by Ramawatar Maurya on Jul 12, 2018
Version 1Show Document
  • View in full screen mode
CommandsDescriptions
vpn tuVPN utility, allows you to rekey vpn
vpn ipafile_check ipassignment.conf detailVerifies the ipassignment.conf file
dtps licshow desktop policy license status
cpstat -f all polsrvshow status of the dtps
vpn shellStart the VPN shell
vpn shell /tunnels/delete/IKE/peer/[peer ip]delete IKE SA
vpn shell /tunnels/delete/IPsec/peer/[peer ip]delete Phase 2 SA
vpn shell /show/tunnels/ike/peer/[peer ip]show IKE SA
vpn shell /show/tunnels/ipsec/peer/[peer ip]show Phase 2 SA
vpn shell show interface detailed [VTI name]show VTI detail
vpn debug ikeon|ikeoffDebug IKE into $FWDIR/log/ike.elg. Analyze ike.elg with the IKEView tool
vpn debug on|offDebug VPN into $FWDIR/log/vpnd.elg. Analyze vpnd.elg with the IKEView tool
vpn debug truncTruncate and stamp logs, enable IKE & VPN debug
vpn drv statShow status of VPN-1 kernel module
vpn overlap_encdomShow, if any, overlapping VPN domains
vpn macutil <user>Show MAC for Secure Remote user <user>
vpn ver [-k]Check VPN-1 major and minor version as well as build number and latest hotfix. Use -k for kernal version 
5 people found this helpful

Attachments

    Outcomes