Professional Documents
Culture Documents
and Troubleshooting
IPsec
Module Overview
• Monitoring IPsec Activity
• Troubleshooting IPsec
Lesson 1: Monitoring IPsec Activity
• Tools used to Monitor IPsec
• MMC snap-in
• Command-line tool
• Troubleshooting IKE
Stop the IPsec Policy Agent and use the ping command to
1 verify communications
• Success:
• 541 - IKE Main Mode or Quick Mode established
• 542 - IKE Quick Mode was deleted
• 543 - IKE Main Mode was deleted
• Information Log Entries:
• Largely pertains to monitoring for denial of service attacks
• There might not be any errors but resources will
run low, which affects performance for legitimate clients
• Quick Mode audit failures are denoted with 547 error message
Notes Page Over-flow Slide. Do Not Print Slide.
See Notes pane.
Lab: Monitoring and Troubleshooting IPsec
• Exercise 1: Monitoring IPsec Connectivity
Logon information
Virtual machine 6421A-NYC-DC1 and
6421A-NYC-SVR1
User name Administrator
Password Pa$$w0rd
• Best Practices
Notes Page Over-flow Slide. Do Not Print Slide.
See Notes pane.