Difference between revisions of "Troubleshooting VPN"

From Tech-Wiki
Jump to: navigation, search
Line 2: Line 2:
 
'''[[Check Point#Gaia|Back to Gaia]]'''
 
'''[[Check Point#Gaia|Back to Gaia]]'''
  
Refer to following SK:
+
Review encryption domain, make sure only one IP matches remote peer and also refer to following SK:
  
 
https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=skI4326
 
https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=skI4326

Revision as of 17:34, 7 April 2019

Back to Gaia

Review encryption domain, make sure only one IP matches remote peer and also refer to following SK:

https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=skI4326

https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk33327

https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk63560


In summary: 

vpn debug trunc
vpn debug ikeon
vpn debug on TDERROR_ALL_ALL=5 
vpn tu
 Delete all IPsec+IKE SAs for a given peer (GW)
vpn debug off
vpn debug ikeoff
vpn debug truncoff

collect files: 
 $FWDIR/log/vpnd.elg
 $FWDIR/log/ike.elg
Retrieved from ‘http://tech-wiki.net/index.php?title=Troubleshooting_VPN&oldid=1303