Monitoring ipsec tunnels – Juniper Networks J-Series User Manual

Table 73 on page 140 summarizes key output fields for stateful firewall filter intrusion
detection.

Table 73: Summary of Key Firewall IDS Output Fields

Values

Field

Source address for the event.

Source Address

Destination address for the event.

Destination address

Total time the information has been in the IDS table.

Time

Total number of bytes sent from the source to the destination address, in thousands (

k

) or millions

(

m

).

Bytes

Total number of packets sent from the source to the destination address, in thousands (

k

) or millions

(

m

).

Packets

Total number of flows of packets sent from the source to the destination address, in thousands (

k

)

or millions (

m

).

Flows

Total number of anomalies in the anomaly table, in thousands (

k

) or millions (

m

).

Anomalies

Configured application, such as FTP or Telnet.

Application

Monitoring IPSec Tunnels

IPSec tunnel information includes information about active IPSec tunnels configured
on the Services Router, as well as traffic statistics through the tunnels. To view IPSec
tunnel information, select Monitor>IPSec in the J-Web interface, or enter the
following CLI

show

commands:

■

show services ipsec-vpn ipsec statistics

■

show services ipsec-vpn ipsec security-associations

■

show services ipsec-vpn ike security-associations

Table 74 on page 140 summarizes key output fields in IPSec displays.

Table 74: Summary of Key IPSec Output Fields

Values

Field

IPSec Tunnels

Name of the service set for which the IPSec tunnel is defined.

Service Set

Name of the rule set applied to the IPSec tunnel.

Rule

Name of the IPSec term applied to the IPSec tunnel.

Term

Gateway address of the local system.

Local Gateway

140

■

Using the Monitoring Tools

J-series™ Services Router Administration Guide