Table Of Contents
VPN Security Management Solution
Configuration Management Reports
Inventory Reports
VPN Syslog Analysis Reports
VPN Security Management Solution
This chapter introduces VPN Security Management Solution and provides tables with the tasks that can be accomplished with it.
VPN Security Management Solution is part of the CiscoWorks2000 family of products. It lets you generate these reports:
•
Configuration Management Reports
•Inventory Reports
•VPN Syslog Analysis Reports
Configuration Management Reports
These reports provide information on VPN related attributes including, IKE policies, Certificate Authorities, Crypto Maps, Crypto Access lists, Transform Sets, and Global SA lifetimes for VPN devices. The reports are based on the latest configuration file from the archive. You can also search VPN devices in the configuration archive.
Table 3-1 shows the tasks you can accomplish with Configuration Management.
Table 3-1 Configuration Management Tasks
Task
|
Purpose
|
Action
|
View VPN configuration report.
|
Generate a report on VPN related attributes for the selected VPN devices.
|
Select VPN Security Management Solution > Reports > Configuration Management> VPN Configuration Reports.
|
Search VPN devices.
|
Search VPN devices in the configuration archive by specifying text patterns.
|
Select VPN Security Management Solution > Reports > Configuration Management> Search VPN Device by Pattern.
|
Inventory Reports
These reports provide a list of the VPN managed devices that support hardware encryption. They also provide information on the devices that need an image upgrade.
Table 3-2 shows the tasks you can accomplish with Inventory.
Table 3-2 Inventory Tasks
Task
|
Purpose
|
Action
|
View hardware encryption reports.
|
Generate a report on the list of managed VPN devices that support hardware encryption cards. This report lists the device name, type and supported encryption card type.
|
Select VPN Security Management Solution > Reports > Inventory > Hardware Encryption Report.
|
View image upgrade report.
|
Generate a report listing the devices that need an IOS image upgrade in order to be IP Sec enabled.
|
Select VPN Security Management Solution > Reports > Inventory > Image Upgrade Report.
|
VPN Syslog Analysis Reports
VPN Syslog Analysis lets you centrally log and track the device syslog messages. You can use the logged error message data to analyze router and network performance. You can use the VPN Syslog Analysis to produce the necessary information and message reports for VPN Messages.
The VPN Syslog Analysis reports are classified as:
•Point/Canned reports. These are VPN Syslog reports based on specific mnemonic groups, and are configured with a set of mnemonics.
•Advanced report. This is a generic report that displays all VPN-specific Syslog messages coming from selected VPN devices. This report is generated only for devices which have VPN capabilities.
Table 3-3 shows the tasks you can accomplish with Syslog Analysis.
Table 3-3 VPN Syslog Analysis Tasks
Task
|
Purpose
|
Action
|
View hardware encryption reports.
|
Generate a canned report on the VPN devices in the network.
|
Select VPN Security Management Solution > Reports > Syslog Analysis > Hardware Encryption Report.
|
View de-encapsulation report.
|
Generate a de-encapsulation report, which is a canned report, for the VPN devices in your network.
|
Select VPN Security Management Solution > Reports > Syslog Analysis > De-encapsulation.
|
View compression - decompression report.
|
Generate a compression - decompression report, which is a canned report, for the VPN devices in your network.
|
Select VPN Security Management Solution > Reports > Syslog Analysis > Compression - Decompression.
|
View packet replay report.
|
Generate a packet replay report, which is a canned report, for the VPN devices in your network.
|
Select VPN Security Management Solution > Reports > Syslog Analysis > Packet Replay.
|
View certificate report.
|
Generate a certificate report, which is a canned report, for the VPN devices in your network.
|
Select VPN Security Management Solution > Reports > Syslog Analysis > Certificate.
|
View IKE report.
|
Generate an IKE report, which is a canned report, for the VPN devices in your network.
|
Select VPN Security Management Solution > Reports > Syslog Analysis > IKE.
|
View advanced report.
|
Generate an advanced report displaying VPN-specific Syslog messages coming from selected VPN devices.
|
Select VPN Security Management Solution > Reports > Syslog Analysis > Advanced.
|
