You fail to establish a Site-to-Site VPN connection between your company's main office and an Azure virtual network. You need to troubleshoot what prevents you from establishing the IPsec tunnel. Which diagnostic log should you review?
Answer is correct - IKEDiagnosticLog
IKEDiagnosticLog = The IKEDiagnosticLog table offers verbose debug logging for IKE/IPsec. This is very useful to review when troubleshooting disconnections, or failure to connect VPN scenarios.
GatewayDiagnosticLog = Configuration changes are audited in the GatewayDiagnosticLog table.
TunnelDiagnosticLog = The TunnelDiagnosticLog table is very useful to inspect the historical connectivity statuses of the tunnel.
RouteDiagnosticLog = The RouteDiagnosticLog table traces the activity for statically modified routes or routes received via BGP.
P2SDiagnosticLog = The last available table for VPN diagnostics is P2SDiagnosticLog. This table traces the activity for Point to Site.
https://docs.microsoft.com/en-us/azure/vpn-gateway/troubleshoot-vpn-with-azure-diagnostics
To troubleshoot the issue with the IPsec tunnel for your Site-to-Site VPN connection, you should review the IKEDiagnosticLog. This log provides detailed information about the Internet Key Exchange (IKE) protocol, which is crucial for establishing the IPsec tunnel. It can help identify configuration errors or connectivity issues.
A.
If the IPsec tunnel fails to establish, Azure will keep retrying every few seconds. For this reason, troubleshooting "VPN down" issues is very convenient on IKEdiagnosticLog because you do not have to wait for a specific time to reproduce the issue.
https://docs.microsoft.com/en-us/azure/vpn-gateway/troubleshoot-vpn-with-azure-diagnostics#IKEDiagnosticLog
If you have trouble remembering this question and you start to think the answer is TunnelDiagnosticLog, then you need to remember to tunnel deeper - as the answer is IKEDiagnosticLog. Although it is very easy to immediately see the word tunnel thinking it may be the right answer.
correct !
The IKEDiagnosticLog table offers verbose debug logging for IKE/IPsec. This is very useful to review when troubleshooting disconnections, or failure to connect VPN scenarios.
upvoted 3 times
...
This section is not available anymore. Please use the main Exam Page.AZ-700 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
crawfish
Highly Voted 2 years, 6 months agoShoukathalimpm
Most Recent 2 weeks, 6 days agoanishk
10 months, 1 week agoTJ001
1 year, 3 months agocharada83
1 year, 7 months ago1particle
1 year, 9 months agoderrrp
1 year, 9 months agoEdward1
2 years agod0bermannn
2 years, 2 months agoAidenYoukhana
2 years, 3 months agochreaxa
2 years, 6 months agoRandomUser
2 years, 6 months agoAmalMOQ
2 years, 6 months ago