Exercise Use Netsh to Monitor IPSec

After you have created and assigned the IPSec policy using Netsh, use Netsh commands to monitor the session.

1. From either computer, start Netsh: Netsh

Netsh>ipsec static

2. Use the Show command and review the active policy to see whether your policy application worked:

show policy name=telnet level=verbose

3. Enter Dynamic mode: dynamic

4. Set the diagnostic value to log all events (the default is 0 or no logging) using this command:

set config property=ipsecdiagnostics value=7

5. Set the IPsecloginterval value to 60 seconds: set config property=ipsecloginterval value=60

6. Display information about Main Mode and Quick Mode SAs using the Show Mmsas All (Figure 11-43) and Show Qmsas All (Figure 11-44) commands.

netsh ipsec dynamic>show nnsas all

IKE Main Mode SAs at 5/25/2003 10:44:40 PM

Cookie Pair Sec Methods fluth Mode

Jj823f 146cd4770f 9 :aec39a054a8e80e0 3DES/MD5/268435457/28800 , port 500 ian$PCOMPANION.LOCAL , port 500 xoti$GCOMPANION.LOCAL

Figure 11-43 Viewing IKE Main Mode statistics

™ Command Prompt - netsh netsh ipsec djinai

Quick Mode SAs

Transport Filter

Poliey Name

Source Address

Destination Addres


Source Port


Offer Used

negot iate computer2 telnet

ESP Con<b/r> ESP Int PFS DH Group

netsh ipsec dynamic>_

Figure 11-44 Viewing Quick Mode statistics

7. Type quit to exit Netsh.

Was this article helpful?

0 0
Computer Hard Drive Data Recovery

Computer Hard Drive Data Recovery

Learn How To Recover Your Hard Drive Data After A Computer Failure.

Get My Free Ebook

Post a comment