VPN Logs

VPN Logs show the reason for a failed connection between your branch office's SD-WANClosed Software-Defined Wide Area Network - A virtual WAN architecture that allows enterprises to leverage any combination of transport services – including MPLS, LTE and broadband internet services – to securely connect users to applications. device and the Harmony Connect Secure Web Gateways.

To view the VPN Logs page, go to Logs and Events > Internet and Network Access > VPN Logs.

Item Description
Time Date and time when the scan was performed.
Action

Reason for the failed connection:

  • Reject

  • Key Install

Status

Brief description about the Action.

Common errors:

  • Auth exchange: Sending notification to peer: Authentication failed MyAuthMethod: Pre-shared secret - Indicates a PSK mismatch.

  • Auth exchange: Sending notification to peer: Traffic Selectors unacceptable... (* for some reason i couldn't generate it like in the past and in the screenshot below, when I tried to create a subnet mismatch I received a log error similar to PSK mismatch) - Indicates a subnet mismatch.

  • Initial exchange: Sending notification to peer: No proposal chosen MyMethods Phase1: AES-256 + HMAC-SHA1, Pre-shared secret, Group 2 - Indicates a cipher suits mismatch.
Source

Public IP address of the branch office's SD-WAN device¹.

Destination

Harmony Connect Secure Web Gateway IP address¹.

Site Name

  • If you have specified static IP address for the SD-WAN device, then it is <Static IP address of the branch site|Branch site name>.

  • If you have specified dynamic IP address for the SD-WAN device, then it is <External IP address of the branch site| Unknown Site>.

    Note - For dynamic IP address, the system cannot retrieve the branch site name.

¹ For branch sites with dynamic IP address, the system does not resolve the actual IP address and shows either external or internal IP address of the site.

To add, remove, or arrange the order of columns:

  1. Right-click the header row and click Columns Profile Editor.

    The Columns Profile Editor window appears.

  2. To add a predefined column to the table, click .

    1. Select the columns and click OK.

  3. To remove a column from the table, select the column and click .

  4. To arrange the order of the column in the table, select the column and click or .

  5. Click OK to close the window.

To filter the data in the table:

Right-click any value in the table and click Filter or Filter out. For example, to filter the data for Reject, click Filter Reject under the Action column. To exclude Reject data from the table, click Filter out Reject.