Skip navigation

Log in to create and rate content, and to follow, bookmark, and share content with other members.

AnsweredAssumed Answered

VPN tu

Question asked by Brianpiraty Alexi on Jul 2, 2018
Latest reply on Jul 3, 2018 by Brianpiraty Alexi

Like • Show 0 Likes0
Comment • 4

what does that mean output of VPN tu shows as (i=0)

INBOUND:
                        1. xxxxxxxx    (i: 0)
                OUTBOUND:
                        1. xxxxxxxxx (i: 0)

No one else has this question

Outcomes

4 Replies

Timothy Hall Jul 3, 2018 4:49 AM
Mark Correct
Correct Answer
For each IPSec tunnel, there are two Security Associations (SAs) formed: inbound and outbound. Although we tend to refer to this VPN Tunnel in the singular, it actually consists of two "flows" of encrypted data: inbound and outbound. A similar concept is employed in the state table element "connections" where each connection is tracked as two separate flows referred to as c2s (client to server - outbound) and s2c (server to client - inbound).

--
Second Edition of my "Max Power" Firewall Book
Now Available at http://www.maxpowerfirewalls.com
Like • Show 0 Likes0
Actions
- Brianpiraty Alexi @ Timothy Hall on Jul 3, 2018 7:40 AM
  Mark Correct
  Correct Answer
  thanks. what does it mean by i:0
  Like • Show 0 Likes0
  Actions
  - Timothy Hall @ Brianpiraty Alexi on Jul 3, 2018 7:51 AM
    Mark Correct
    Correct Answer
    I believe on an R80.10+ gateway the i:0 indicates the CoreXL Firewall Worker Instance number (in this case instance #0) that is handling that SA.
    
    --
    Second Edition of my "Max Power" Firewall Book
    Now Available at http://www.maxpowerfirewalls.com
    Like • Show 0 Likes0
    Actions
    - Brianpiraty Alexi @ Timothy Hall on Jul 3, 2018 8:46 AM
      Mark Correct
      Correct Answer
      it is a standalone firewall, I see for other tunnels different numbers . I would say 1-9
      Like • Show 0 Likes0
      Actions

Recommended Content