Why in the GUI is the ACC > Tunnel Activity tab blank?
15103
Created On 07/24/19 22:47 PM - Last Modified 10/07/20 21:05 PM
Question
- ACC > Tunnel Activity not displaying any data for the IPSec tunnels configured on the firewall
Environment
- PAN-OS 8.1, 9.0
- Multiple IPsec tunnels configured and would like to monitor tunnel performance and detail about traffic flow
Answer
In the GUI, under ACC > Tunnel Activity will not show data for IPSec encrypted tunnels.
The firewall can only perform tunnel content inspection on the traffic content of clear-text tunnel protocols:
- Generic Routing Encapsulation (GRE) (RFC 2784)
- Non-encrypted IPSec traffic [NULL Encryption Algorithm for IPSec (RFC 2410) and transport mode AH IPSec]
- General Packet Radio Service (GPRS) Tunneling Protocol for User Data (GTP-U)
Additional Information
NOTE:
Tunneled traffic can be monitored using QoS. See the document, Graphic Traffic Monitoring for Interfaces - QoS Statistics, for configuration.