To view current remote users connected to an IPsec gateway and remote user security associations

Steps
 

Choose Manage→Service→Services from the NFM-P main menu. The Manage Services form opens.


Choose an IES or VPRN service and click Properties. The service properties form opens.


Expand the Sites object in the service navigation tree.


Expand the Routing Instance object in the service navigation tree.


Expand the L3 Access Interfaces object in the service navigation tree, click on the appropriate L3 access interface, and click Properties. The L3 Access Interface (Edit) form opens.


Click on the IPsec Gateway tab.


Choose the IPsec gateway for which you want to view the current remote users and click Properties. The IPsec Gateway (Edit) form opens.


Click on the Statistics tab to view and collect statistics as required.

Note: If a remote user has been removed, the previously collected statistics for the remote user will remain visible on the Statistics tab of the IPsec gateway.


Click on the Remote Users tab. The current remote users are listed.


10 

Select a user and click Properties. The IPsec Remote User (Edit) form opens.


11 

Click on the Remote User Security Associations tab. The security associations of the remote user are listed.


12 

Select a security association and click Properties. The IPsec Remote User Security Association (Edit) form opens.


13 

View general information and parameters that were negotiated with IPsec gateway.

These include but are not limited to:

  • Internet IP address

  • Private IP address and Second Private IP address

  • SA lifetime

  • DH group

  • Replay window


14 

Click on the Algorithms tab to view authentication and encryption algorithm information.


15 

Click on the Traffic Selector tab to view the list of IPsec remote user dynamic security association traffic selector entries.


16 

Close the forms.

End of steps