Print Download PDF Send Feedback

Previous

VPN Command Line Interface (CLI)

VPN Commands

Command

Description

VPN

Use this command and it's subcommands for working with various aspects of VPN. VPN commands executed on the command line generate status information regarding VPN processes, or are used to stop and start specific VPN services.

vpn compreset

This command resets the compression/decompression statistics to zero.

vpn compstat

This command displays compression/decompression statistics.

vpn crl_zap

This command is used to erase all Certificate Revocation Lists (CRLs) from the cache.

vpn crlview

This command retrieves the Certificate Revocation List (CRL) from various distribution points and displays it for the user.

vpn debug

This command instructs the VPN daemon to write debug messages to the log file: $FWDIR/log/vpnd.elg.

vpn macutil

This command is related to Remote Access VPN, specifically Office mode, generating a MAC address per remote user. This command is relevant only when allocating IP addresses via DHCP.

vpn mep_refresh

This command causes all MEP tunnels to fail-back to the best available gateway, providing that backup stickiness has been configured.

vpn overlap_encdom

This command displays all overlapping VPN domains. Some IP addresses might belong to two or more VPN domains. The command alerts for overlapping encryption domains if one or both of the following conditions exist:

  • The same VPN domain is defined for both Security Gateways
  • If the gateway has multiple interfaces, and one or more of the interfaces has the same IP address and netmask.

vpn ver

This command displays the VPN major version number and build number.

vpn tu

This command launches the TunnelUtil tool which is used to control VPN tunnels.

vpn sw_topology

This command downloads the topology for a Sofaware gateway.

vpn tu

Description

This command launches the TunnelUtil tool which is used to control VPN tunnels.

Syntax

vpn tu

Parameters

Parameter

Description

vpn tu mstats

Shows tunnel distribution for each ClusterXL instance.

vpn tu tlist

vpn tu list tunnels

Shows data on the tunnels that are currently established.

vpn tu 2

vpn tu 4

Every tunnel has a mark with an instance number.

vpn tu tlist start

To start counting.

vpn tu tlist stop

To stop counting.

vpn tu tlist status

To find out if statistics are on or off.

vpn tu tlist clear

Sets all counters to zero.