Last Modified: Apr 28, 2025
Affected Product(s):
BIG-IP TMOS
Known Affected Versions:
15.1.5, 15.1.5.1, 15.1.6, 15.1.6.1, 15.1.7, 15.1.8, 15.1.8.1, 15.1.8.2, 15.1.9, 15.1.9.1, 15.1.10, 15.1.10.2, 15.1.10.3, 15.1.10.4, 15.1.10.5, 15.1.10.6
Opened: Jun 14, 2023 Severity: 4-Minor
SK_logging requires you to enable multiple db variables and debug2 logging. When it is enabled, the message ID is the same for all the logs.
Configuring IKEv2 key logging is cumbersome and the logs are difficult to parse through when there are many tunnels.
- Create tunnels, enable below sys-db variables ipsec.debug.logkeys ipsec.debug.logsk ipsec.debug.pfkey.msg - Enable debug2 logging
None
None