Message Image

Skip main navigation (Press Enter).

Screen OS

last person joined: 8 months ago

This is a legacy community with limited Juniper monitoring.

Back to discussions

Expand all | Collapse all

vpn cli commands

Jump to Best Answer

Erdem12-12-2012 04:27

what command can i use to show the vpn (or ike) messages between two endpoints? i want to filter ...

samc12-12-2012 05:29Best Answer

Hello. for phase 1, "get ike cookie" (there is no way to filter for just a single gateway) for phase ...

Erdem12-12-2012 06:13

1. vpn cli commands

0 Recommend
Erdem
Posted 12-12-2012 04:27
what command can i use to show the vpn (or ike) messages between two endpoints?

i want to filter the output to not show messages relating to other vpn's
2. RE: vpn cli commands
Best Answer

0 Recommend
samc
Posted 12-12-2012 05:29
Hello. for phase 1, "get ike cookie" (there is no way to filter for just a single gateway) for phase 2, "get sa" ; can use "get sa | inc x.x.x.x", specifying the remote IP. "get sa id 0x...." will provide details. "get sa stat | inc x.x.x.x" is also sometimes helpful. When running "debug ike xxx", can limit the capture to remove IP, by "set sa-filter x.x.x.x" Regards, Sam
3. RE: vpn cli commands

0 Recommend
Erdem
Posted 12-12-2012 06:13
thank you

Powered by Higher Logic