Current NSMpbA (ASL 5.2/3)
I'm slightly surprised that I can't seem to find (even the most interesting subset of) this - probably I'm just looking in the wrong places.
I'd like to see a list of 1) current 2) historic L2TP VPN-connections preferably with the following info (we run L2TP with x.509-certificates instead of PSK):
* x.509 certificate info
* x.509 certificate authentication success or failure
* Username
* User authentication success or failure
* Start time
* End time
* General IPSec connection info
* Errors, reasons for connection termination etc
In an ideal world it would be nice to be able to additionally get info on the traffic that passed through a VPN connection too:
* accessed IP's
* accessed ports on each IP
* IDS/IPS events connected to the connections
* related proxy events
* logged firewall events
Is this available at all? parts of it? Have anyone implemented something similar?
We do authentication to a remote Radiusserver, and caould with no problems add a proxying radiusserver in between if that eases the job.
kind regards,
-sig
This thread was automatically locked due to age.
Guest User!
You are not Sophos Staff.
