Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
 

Monitor VPN

You are here: Monitor > Logs > VPN.

Use the monitoring functionality to view comprehensive stream log details of VPN in a tabular format that includes sortable columns. A VPN provides a means by which remote computers communicate securely across a public WAN such as the Internet.

Note:

VPN page is available on all the SRX Series Firewalls except the SRX5000 line of devices.

Table 1 describes the fields on the VPN page.

Table 1: Fields on the VPN Page

Field

Description

Last

Select the time from the list to view the activity that you are most interested in. Once the time is selected, all of the data presented in your view is refreshed automatically.

You can also use Customize to set a custom date and click Apply to view the specified VPN events.

Refresh

Click the refresh icon at the upper-right corner to display the fresh content.

Show Hide Columns

This icon is represented by three vertical dots.

Enables you to show or hide a column in the grid.

Export to CSV

You can export the VPN data to a comma-separated value (.csv) file.

Select the three vertical dots on the right-side of the page and click Export to CSV. The CSV file is downloaded to your local machine. You can download only maximum of 100 VPN data.

Filter Criteria

Use the filter text box present above the table grid. The search includes the logical operators as part of the filter string.

Note:

Starting in Junos OS 23.1R1 Release, J-Web supports the following operators:

  • = (equal to)

  • AND

  • != (not equal to)

  • >= (greater than or equal to)

  • <= (less than or equal to)

  • Nested and/or

J-Web also supports Netmask when searching for IP addresses.

In the filter text box, when you hover over the icon, it displays an example filter condition. When you start entering the search string, the icon indicates whether the filter string is valid or not.

The available filter option is Log type.

X

Click X to clear your search filter.

Save Filter

Click Save Filter to save filters after you specify the filtering criteria.

To save a filter:

  1. Enter the filter criteria you are looking for in the advanced search box.

  2. Click Save Filter.

  3. Enter a name for the filter and click the tick icon to save it.

Load Filter

Displays the saved filters list.

Hover over the saved filter name to view the query expression. You can delete the saved filter using the delete icon.

Time

Displays the time when the VPN log was received.

Log Type

Displays the VPN log type:

  • Bad SPI

  • Replay

  • PV decryption

  • PV encryption

  • PV sm keygen

  • PV replay

  • Decrypt bad pad

  • AUTH fail

  • D3P ERR

Interface Name

Displays the external interface name for the VPN.

Tunnel ID

Displays the VPN tunnel ID.

Source IP

Displays the source IP address from where the VPN connection is established.

Destination IP

Displays the destination IP to where the VPN connection is established.

Length

Displays the total packet length in Bytes.

Type

Displays the VPN type: ESP or AH protocol.

Index

Displays the index number of the IKE SA.

Sequence Number

Displays the sequence number of the packets sent for the VPN event.

Message

Displays the error message for the VPN event.