Cisco ASA 5505 Configuration Manual page 1599
Asa 5500 series
Hide thumbs
Also See for ASA 5505:
- Getting started manual (168 pages) ,
- Administrator's manual (118 pages) ,
- Hardware installation manual (82 pages)
Table of Contents
Advertisement
Chapter 70
Monitoring VPN
Global IKE/IPSec Statistics
This pane displays the global IKE/IPSec statistics for currently active user and administrator sessions on
the adaptive security appliance. Each row in the table represents one global statistic.
Fields
•
•
•
Modes
The following table shows the modes in which this feature is available:
Firewall Mode
Routed
•
NAC Session Summary
The NAC Session Summary pane lets you view the active and cumulative Network Admission Control
sessions.
Fields
•
•
•
•
•
•
OL-20339-01
Show Statistics For—Selects a specific protocol, IKE Protocol (the default) or IPSec Protocol.
Statistics—Shows the statistics for all the protocols in use by currently active sessions.
Statistic—Lists the name of the statistical variable. The contents of this column vary, depending
–
upon the value you select for the Show Statistics For parameter.
Value—The numerical value for the statistic in this row.
–
Refresh—Updates the statistics shown in the Global IKE/IPSec Statistics table.
Security Context
Transparent Single
—
•
Active NAC Sessions—General statistics about remote peers that are subject to posture validation.
Cumulative NAC Sessions—General statistics about remote peers that are or have been subject to
posture validation.
Accepted—Number of peers that passed posture validation and have been granted an access policy
by an Access Control Server.
Rejected—Number of peers that failed posture validation or were not granted an access policy by
an Access Control Server.
Exempted—Number of peers that are not subject to posture validation because they match an entry
in the Posture Validation Exception list configured on the adaptive security appliance.
Non-responsive—Number of peers not responsive to Extensible Authentication Protocol (EAP) over
UDP requests for posture validation. Peers on which no CTA is running do not respond to these
requests. If the adaptive security appliance configuration supports clientless hosts, the Access
Control Server downloads the access policy associated with clientless hosts to the adaptive security
appliance for these peers. Otherwise, the adaptive security appliance assigns the NAC default policy.
Multiple
Context
System
—
—
Cisco ASA 5500 Series Configuration Guide using ASDM
VPN Statistics
70-11
- Quick Links:
- Starting Asdm
- Downloading the Asdm Launcher
Hide quick links:
Advertisement
Chapters
Table of Contents
