IPSec Status Workspace
The IPSec Status workspace displays IP security configuration and
IP security performance statistics for all active TCP/IP stacks on
a z/OS(R) system image. The workspace
displays one row of data for each active stack on the monitored system.
You can use the information in this workspace to quickly assess the
status of IKE and dynamic IP tunnels and the effects that filter rules
have on IP traffic.
To display the IPSec Status workspace, click the TCP/IP Subnode
in the Navigation tree.
Summary information is displayed in the IPSec Status Summary Table.
The IPSec Status workspace contains the following views:
- IKE Tunnel Activations: Provides a snapshot
of the cumulative number of successful and failed IKE tunnel activations
for each TCP/IP stack. This bar chart shows the number of tunnel activations
by TCPIP STC name with two bars for each stack as follows:
- Yellow represents successful IKE tunnel
activations.
- Blue represents failed IKE tunnel activations.
- Dynamic Tunnel Activations: Provides a snapshot
of the cumulative number of successful and failed dynamic tunnel activations
for each TCP/IP stack. This bar chart shows the number of tunnel
activations by TCPIP STC name with two bars for each stack as follows:
- Yellow represents successful dynamic tunnel
activations.
- Blue represents failed dynamic tunnel activations.
- Protected Byte Rate: Shows the number of
bytes per minute being protected by IKE and dynamic IP tunnels for
each TCP/IP stack. The bar chart shows the number of bytes per minute
by TCP/IP stack name with two bars for each stack as follows:
- Yellow represents IKE tunnels.
- Blue represents IP tunnels.
- Dynamic Tunnel States for All Stacks: Provides
a snapshot of the cumulative number of tunnels currently in different
states across all the known TCP/IP stacks. The bar chart shows the
number of tunnels in each of the states as follows:
- Yellow represents current number of active
IKE tunnels.
- Blue represents the current number of active
dynamic tunnels (including active dynamic SWSA shadow tunnels).
- Pink represents the current number of IKE
tunnels in progress (either pending or in negotiation).
- Green represents the current number of dynamic
tunnels in progress.
- Turquoise represents the current number
of expired IKE tunnels.
- Orange represents the current number of
expired dynamic tunnels.
- Total Packet Distribution: Shows how packets
are being distributed between permit and deny actions by the filters
for each of the TCP/IP stacks. The bar charts shows the percentage
of packets being permitted or denied (either by deny or mismatch action)
by TCP/IP stack name.
- Yellow represents actions denied by deny.
- Blue represents actions denied by mismatch.
- Pink represents permitted actions.
- IPSec Status Summary Table:
Displays IP security performance and configuration information for
all active TCP/IP stacks for a given z/OS image. Each row represents
one of the active stacks running in the z/OS(R) image.
IPSec Status Summary Table
The IPSec Status Summary Table displays IP security performance
and configuration information for all active TCP/IP stacks for a given
z/OS image. Each row represents one of the active stacks running
in the z/OS image. For a complete list of the attributes available
in the IPSec Status Summary Table, and a brief description of each,
see the IPSec Status Attributes help panel.
The Dynamic IP Tunnels Statistics Workspace (default) workspace
can be accessed by clicking the Link icon in
the IPSec Status Summary Table. The following additional workspaces
can be accessed by right-clicking the Link icon
in the IPSec Status Summary Table and selecting one of the following
workspaces:
See also: