IPSec module: Difference between revisions
Jump to navigation
Jump to search
Access restrictions were established for this page. If you see this message, you have no access to this page.
(Created page with "The IPSec module shows information about IPSec ESP traffic and sequence counter correctness. Values about packets, bytes, packets per second and bytes per second of IPSec ESP...") |
No edit summary |
||
| Line 1: | Line 1: | ||
The IPSec module shows information about IPSec ESP traffic and sequence counter correctness. | The IPSec module shows information about IPSec ESP traffic and sequence counter correctness. | ||
== Overview == | |||
Values about packets, bytes, packets per second and bytes per second of IPSec ESP traffic are shown together with a graph over time. A PCAP button allows for capturing that traffic. | Values about packets, bytes, packets per second and bytes per second of IPSec ESP traffic are shown together with a graph over time. A PCAP button allows for capturing that traffic. | ||
A sequence counter analysis is performed. Several | |||
A sequence counter analysis is performed. Several counters provide information about: | |||
* Sequence number repeated: For two subsequent IPSec ESP packets the sequence number was exactly the same. | * Sequence number repeated: For two subsequent IPSec ESP packets the sequence number was exactly the same. | ||
* Sequence number too high: Between two subsequent packets the sequence number did not increase by 1 but with a higher value. This is an indication about a packet loss. | * Sequence number too high: Between two subsequent packets the sequence number did not increase by 1 but with a higher value. This is an indication about a packet loss. | ||
* Sequence number too low: Between two subsequent packets the sequence number did not increase by 1. | * Sequence number too low: Between two subsequent packets the sequence number did not increase by 1. The latter packet had a lower value. | ||
The latter packet had a lower value. | |||
== Connections == | |||
All connections with their source and destination IPs and SPI are shown. Traffic counter, counter about sequence numbers and packet loss are shown together with history graphs. | |||
Revision as of 12:54, 26 February 2021
The IPSec module shows information about IPSec ESP traffic and sequence counter correctness.
Overview
Values about packets, bytes, packets per second and bytes per second of IPSec ESP traffic are shown together with a graph over time. A PCAP button allows for capturing that traffic.
A sequence counter analysis is performed. Several counters provide information about:
- Sequence number repeated: For two subsequent IPSec ESP packets the sequence number was exactly the same.
- Sequence number too high: Between two subsequent packets the sequence number did not increase by 1 but with a higher value. This is an indication about a packet loss.
- Sequence number too low: Between two subsequent packets the sequence number did not increase by 1. The latter packet had a lower value.
Connections
All connections with their source and destination IPs and SPI are shown. Traffic counter, counter about sequence numbers and packet loss are shown together with history graphs.