We use cookies on our website to ensure we provide you with the best experience on our website. By using our website, you agree to the use of cookies for analytics and personalized content.This website uses cookies. More Information
It seems like your browser didn't download the required fonts. Please revise your security settings and try again.
Barracuda NextGen Firewall X

How do I increase IPSEC log levels to troubleshoot a client-to-site or site-to-site VPN tunnel?

  • Type: Knowledgebase
  • Date changed: 5 months ago
Solution #00007017  

Scope:

All Barracuda NG Firewalls, all firmware versions.

Answer:

Increasing IPSEC log levels can be extremely useful for troubleshooting IPSEC tunnels, both client-to-site and site-to-site.  To enable this feature, do the following:
 
1.       From NG Admin, navigate to the Config tab and switch to Full Config
2.       From here, navigate to Box>Virtual Servers>?Server Name?(typically S1)>VPN-Service>VPN Settings
3.       Lock the screen
4.       Click ?Click here for Server Settings?, then navigate to the Advanced tab.
5.       Open the dropdown for ?IPSec log level? and change it to the level that you would like, with 0 being the default and least informative, and 10 being the highest and most informative.
6.       Click OK once you?ve selected the log level you would like.
7.       Send Changes and Activate.
 
Bear in mind that increasing the IPSec log level will increase the load on the box as it can potentially log a vastly larger amount of information than the default settings.  It is generally best to temporarily increase the log level while troubleshooting, then changing it back once finished.

Link To This Page: