Important Notice: Our web hosting provider recently started charging us for additional visits, which was unexpected. In response, we're seeking donations. Depending on the situation, we may explore different monetization options for our Community and Expert Contributors. It's crucial to provide more returns for their expertise and offer more Expert Validated Answers or AI Validated Answers. Learn more about our hosting issue here.

How do I use the ACL debugs to debug a VPN Connection?

ACL connection debug debugs VPN
0
Posted

How do I use the ACL debugs to debug a VPN Connection?

0 CommentsAdd a Comment

1 Answer

0

Debugging VPNs and ACLs is a bit different than using the other debug commands. It is a two step process to enable ACL debugging. You must first be in configuration mode. 1) Go into “context ip” and then into the ethernet interface and type the following debug commands: “debug acl in” “debug acl out” 2) Then you can enable and disable debugging of the ACLs by the using the command “debug acl” or “no debug acl”. Note: VPNs tunnels only work between the two networks configured as a VPN (usually two private networks on eth1 like 192.168.1.0 and 192.168.2.0). You cannot ping or test the VPN from the console port or the SmartNode administrator command. You must test between PCs on the two private networks. For instance, a PC at 192.168.1.10 should be able to ping a PC at 192.168.2.10 through the VPN tunnel. You cannot PING a PC on one of the VPN tunnels from the console or admisistrator account. Additionally, “debug ipsec” provides the IPSEC debug monitor which is normal a one-step debug co

0 CommentsAdd a Comment

Related Questions

What is your question?

*Sadly, we had to bring back ads too. Hopefully more targeted.

Experts123