[Contents] [Prev] [Next] [Index] [Report an Error]

Configuring Trace

To configure trace options, specify flags using the traceoptions statement:



[edit security]

traceoptions {
file filename <files number> <size size>;
flag all;
flag database;
flag general;
flag ike;
flag parse;
flag policy-manager;
flag routing-socket;
flag timer;
}

You can include these statements at the following hierarchy levels:

[edit security]
[edit services ipsec-vpn]

You cannot configure these traceoptions statements at both hierarchy levels. Include the traceoptions statement at the [edit services ipsec-vpn] hierarchy level to trace IPSec events for adaptive services interfaces. For more information, see the “IPSec Services Configuration Guidelines” chapter of the JUNOS Services Interfaces Configuration Guide.

Trace option output is recorded in the /var/log/kmd file.

You can specify one or more of the following security tracing flags:

all—Trace all security events
database—Trace database events
general—Trace general events
ike—Trace IKE module processing
parse—Trace configuration processing
policy-manager—Trace policy manager processing
routing-socket—Trace routing socket messages
timer—Trace internal timer events

[Contents] [Prev] [Next] [Index] [Report an Error]