Cisco Systems VPN 3000 Manual De Usuario

Monitor | Statistics | IPSec

This table provides IPSec Phase 2 global statistics. During IPSec Phase 2, the two peers negotiate 
Security Associations that govern traffic within the tunnel.

The number of currently active IPSec Phase-2 tunnels, both for LAN-to-LAN connections and remote 
access.

The cumulative total of all currently and previously active IPSec Phase-2 tunnels, both for LAN-to-LAN 
connections and remote access.

The cumulative total of bytes (octets) received by all currently and previously active IPSec Phase-2 
tunnels, before decompression. In other words, total bytes of IPSec-only data received by the IPSec 
subsystem, before decompressing the IPSec payload.

The cumulative total of bytes (octets) sent by all currently and previously active IPSec Phase-2 tunnels, 
after compression. In other words, total bytes of IPSec-only data sent by the IPSec subsystem, after 
compressing the IPSec payload.

The cumulative total of packets received by all currently and previously active IPSec Phase-2 tunnels.

The cumulative total of packets sent by all currently and previously active IPSec Phase-2 tunnels.

The cumulative total of packets dropped during receive processing by all currently and previously active 
IPSec Phase-2 tunnels, excluding packets dropped due to anti-replay processing. If there is a problem 
with the content of a packet, the system drops the packet. This number should be zero or very small; if 
not, check for misconfiguration.

The cumulative total of packets dropped during receive processing due to anti-replay errors, by all 
currently and previously active IPSec Phase-2 tunnels. If the sequence number of a packet is a duplicate 
or out of bounds, there may be a faulty network or a security breach, and the system drops the packet.