IPSec Status Workspace
The IPSec Status workspace displays IP security configuration and IP security
performance statistics for all active TCP/IP stacks on a z/OS system image.
The workspace displays one row of data for each active stack on the monitored
system. You can use the information in this workspace to quickly assess the
status of IKE and dynamic IP tunnels and the effects that filter rules have
on IP traffic.
To display the IPSec Status workspace, click the TCP/IP Navigator item.
Summary information is displayed in the IPSec Status summary table.
The IPSec Status workspace contains the following views:
- IKE Tunnel Activations: Provides a snapshot of the
cumulative number of successful and failed IKE tunnel activations for each
TCP/IP stack. This bar chart shows the number of tunnel activations by TCPIP
STC name with two bars for each stack as follows:
- Yellow represents successful IKE tunnel activations.
- Blue represents failed IKE tunnel activations.
- Dynamic Tunnel Activations: Provides a snapshot
of the cumulative number of successful and failed dynamic tunnel activations
for each TCP/IP stack. This bar chart shows the number of tunnel activations
by TCPIP STC name with two bars for each stack as follows:
- Yellow represents successful dynamic tunnel activations.
- Blue represents failed dynamic tunnel activations.
- Protected Byte Rate: Shows the number of bytes per
minute being protected by IKE and dynamic IP tunnels for each TCP/IP stack.
The bar chart shows the number of bytes per minute by TCP/IP stack name with
two bars for each stack as follows:
- Yellow represents IKE tunnels.
- Blue represents IP tunnels.
- Dynamic Tunnel States for All Stacks: Provides a
snapshot of the cumulative number of tunnels currently in different states
across all the known TCP/IP stacks. The bar chart shows the number of tunnels
in each of the states as follows:
- Yellow represents current number of active IKE tunnels.
- Blue represents the current number of active dynamic tunnels (including
active dynamic SWSA shadow tunnels).
- Pink represents the current number of IKE tunnels in progress (either
pending or in negotiation).
- Green represents the current number of dynamic tunnels in progress.
- Turquoise represents the current number of expired IKE tunnels.
- Orange represents the current number of expired dynamic tunnels.
- Total Packet Distribution: Shows how packets are
being distributed between permit and deny actions by the filters for each
of the TCP/IP stacks. The bar charts shows the percentage of packets being
permitted or denied (either by deny or mismatch action) by TCP/IP stack name.
- Yellow represents actions denied by deny.
- Blue represents actions denied by mismatch.
- Pink represents permitted actions.
- IPSec Status summary table: Displays
IP security performance and configuration information for all active TCP/IP
stacks for a given z/OS image. Each row represents one of the active stacks
running in the z/OS image.
IPSec Status summary table
The IPSec Status summary table displays IP security performance and configuration
information for all active TCP/IP stacks for a given z/OS image. Each row
represents one of the active stacks running in the z/OS image. For a complete
list of the attributes available in the IPSec Status summary table, and a
brief description of each, see the IPSec Status Attributes help panel.
The Dynamic IP Tunnels Statistics Workspace (default) workspace
can be accessed by clicking the Link icon in the IPSec
Status summary table. The following additional workspaces can be accessed
by right-clicking the Link icon in the IPSec
Status summary table and selecting one of the following workspaces:
See also: