Routes
The Routes instrument provides the operator with real-time information about VPN connections and routing tables on the rXg.
Note: In cluster deployments, a Cluster Node field is displayed in applicable scaffolds to indicate which node the entry belongs to.
OpenVPN Entries
The OpenVPN Entries scaffold displays all currently connected OpenVPN clients and their connection details.
The Username field displays the authenticated username for the VPN connection. The Common Name field shows the certificate common name used for authentication. The Real Address field displays the actual IP address and port from which the client is connecting. The Virtual Address field shows the IP address assigned to the client within the VPN tunnel. The Virtual IPv6 Address field displays the IPv6 address assigned to the client if applicable. The Connected At field shows when the client established the connection. The Bytes Sent and Bytes Received fields display the amount of data transferred over the VPN connection. The OpenVPN Server field indicates which OpenVPN server configuration the client is connected to. The Account field shows the associated account if the user authenticated with account credentials. The Admin field shows the associated admin if the user authenticated with admin credentials.
IPsec Entries
The IPsec Entries scaffold displays the current IPsec Security Associations (SAs) on the rXg.
The Created field indicates when the SA was established. The Src field displays the source IP address of the IPsec tunnel. The Dst field shows the destination IP address of the tunnel endpoint. The Bytes In and Bytes Out fields display the data transferred through the tunnel. The Protocol field displays the security protocol in use (ESP or AH). The Mode field indicates the IPsec mode (tunnel or transport). The Lifetime field shows the remaining lifetime of the SA in seconds. The Validtime field displays the validity time remaining for the SA.
BGP Entries
The BGP Entries scaffold displays the status of BGP peering sessions on the rXg.
The Cluster Node field shows which node in a cluster the BGP session belongs to. The Neighbor field displays the IP address of the BGP peer. The BGP Peer field links to the configured BGP peer definition. The State field indicates the current BGP session state (Idle, Connect, Active, OpenSent, OpenConfirm, or Established). The ASN field shows the Autonomous System Number of the peer. The Msg Rcvd field displays the number of BGP messages received from the peer. The Msg Sent field shows the number of BGP messages sent to the peer. The Prf Rcvd field shows the number of prefixes received from the peer. The Uptime field displays how long the session has been established.
Routes
The Routes scaffold displays the current routing table entries on the rXg.
The Cluster Node field shows which node in a cluster the route belongs to. The Destination field shows the destination network or host for the route. The Gateway field displays the next-hop IP address or interface for reaching the destination. The Flags field shows the route flags indicating route characteristics (U=Up, G=Gateway, H=Host, S=Static, etc.). The Use field displays the number of times this route has been used. The MTU field shows the Maximum Transmission Unit for packets using this route. The If field indicates the network interface used for this route. The Expire field indicates when a dynamic route will expire. The BGP Peer, IPsec Tunnel, OpenVPN Client, and Tunnel Interface fields show associations with VPN configurations that may have created the route. The IP6 field indicates whether this is an IPv6 route.
