eG Monitoring
 

Measures reported by WgSaErrorsTest

Security associations are negotiated between two computers during the first phase of establishing an Internet key Exchange (IKE) connection. These security associations establish shared session secrets from which keys are derived for encryption of tunneled data. For an optimal encryption process to happen, the packets that are sent thorugh the security associations should be error free. If too many errors are spotted in the data packets, administrators may need to figure out the exact cause of the errors – whether is it due to a fault security association connection or due to a malicious attack? The WgSaErrorsTest test helps you in identifying the errors in the data packets!

This test monitors the security association of the firewall and identifies the data packets that were received with errors such as decrypt errors, authenticate errors, replay errors etc. This way, administrators would be alerted if there are too may errors that need to be manipulated for the security association to encrypt tunneled data smoothly.

The measures made by this test are as follows:

Measurement Description Measurement Unit Interpretation
Pkts_rec_dec_error Indicates the number of packets that were received with decrypt errors. Number Ideally, the value of this measure should be zero. A high value for this measure is a cause of concern which requires the administrator to identify the errors and rectify them quickly.
Pkts_rec_auth_error Indicates the number of packets that were received with authentication errors. Number  
Pkts_rec_reply_error Indicates the number of packets that were received with replay errors. Number  
Pkts_rec_policy_error Indicates the number of packets that were received with errors relating to the security policy. Number  
Pkts_received_error Indicates the number of packets that were received with other type of errors i.e.,.packets received with miscellaneous errors. Number