08-26-2009 06:19 AM - edited 02-21-2020 04:19 PM
Hi,
I have a Cisco 2811 router with IPSEC site to site VPN configured to a particular IP. I have a log server (linux box) in my network. I need to log all VPN events (tunnel establishment, various phases etc.) so that evenif the tuneel goes down, I can see what happened that particular time. Currently I have debug crypto ipsec and debug crypto isakmp on and the events are logged in my log server. Turning on the debugs increases my router processor utilization. Is there any other way (apart from turning on the debug) to log the VPN activity?
Thanks for any response.
08-26-2009 10:56 AM
I doubt there is any syslogs for ipsec negotiation phases but you can turn on syslog for session up/down. Other than that you have only debugs to check.
crypto logging session
08-27-2009 12:49 AM
I suppose another option may be to enable snmp for ipsec? This may give the info that you need?
â¢CISCO-IPSEC-FLOW-MONITOR- MIB
â¢CISCO-IPSEC-MIB
â¢CISCO-IPSEC-POLICY-MAP-MIB
HTH
Cameron
08-27-2009 04:21 AM
How do I enable snmp for ipsec ? Any commands highly appreciable..
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide