Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?


traceoptions (Security IPsec)


Hierarchy Level


Configure IPsec tracing options. Trace operations track IPsec events and record them in a log file in the /var/log directory.

Trace operations are written to the trace file /var/log/kmd.


  • flag—To specify more than one trace operation, include multiple flag statements.

    • all—Trace with all flags enabled

    • next-hop-tunnel-binding—Trace next-hop tunnel binding events

    • packet-drops—Trace packet drop activity

    • packet-processing—Trace data packet processing events

    • security-associations—Trace security association (SA) management events

Required Privilege Level

trace—To view this statement in the configuration.

trace-control—To add this statement to the configuration.

Release Information

Statement introduced in Junos OS Release 8.5.