This topic describes how to use the self-service diagnostics feature for VPN Gateway.
Overview
You can view the logs of IPsec-VPN connections and SSL-VPN connections, and error codes of IPsec-VPN connections in the VPN Gateway console. After you activate Network Intelligence Service (NIS) for VPN Gateway, you can troubleshoot VPN Gateway issues by using features such as VPN gateway diagnostics and reachability analyzer.
Diagnostic tools and references
The following table describes the diagnostic tools and references for troubleshooting.| Diagnostic tools and references | Description |
|---|---|
| VPN gateway diagnostics | You can use this feature to troubleshoot IPsec negotiation issues, route configuration issues, and VPN gateway status issues. The system provides solutions based on the actual issue information. |
| Reachability analyzer | You can use this feature to check the connectivity between the resources that use a VPN gateway to communicate with each other. We recommend that you use this feature to troubleshoot data transfer issues. |
| Troubleshoot IPsec-VPN connection issues | This topic describes common issues of IPsec-VPN connections and provides troubleshooting methods. You can refer to Troubleshoot IPsec-VPN connection issues to troubleshoot based on the error codes and log data in the VPN Gateway console. |
| Troubleshoot SSL-VPN connection issues | This topic describes common issues of SSL-VPN connections and provides troubleshooting methods. You can refer to Troubleshoot SSL-VPN connection issues to troubleshoot based on the log data in the client and in the VPN Gateway console. |
| FAQ about IPsec-VPN connections | This topic describes common negotiation issues and connectivity issues of IPsec-VPN connections and provides solutions. |
| FAQ about SSL-VPN connections | This topic describes common negotiation issues and connectivity issues of SSL-VPN connections and provides solutions. |
Diagnostic tools and references
The following table describes the diagnostic tools and references for troubleshooting.
| Category | Diagnostic tools and references |
|---|---|
| IPsec negotiations have exceptions | |
| IPsec negotiations are successful but data transfer has exceptions |
|
| The SSL-VPN connection has exceptions | |
| The SSL-VPN connection is established but data transfer has exceptions |
|
| The status of the VPN gateway is abnormal | VPN gateway diagnostics |
| Billing issues | Billing |
| Insufficient resource quotas | Quotas |
| Other issues | VPN gateway diagnostics |
Descriptions
- You can use the VPN gateway diagnostics feature in the VPN Gateway console or in the NIS console.
- For more information about how to use this feature in the VPN Gateway console, see Diagnose a VPN gateway.
- For more information about how to use this feature in the NIS console, see Work with instance diagnostics.
- You can use reachability analyzer only in the NIS console. For more information, see Work with reachability analyzer.