You can enable logging of all IPSec VPN traffic.

By default, logging is enabled and is set to the WARNING level.


  1. Log in to the vSphere Web Client.
  2. Click Networking & Security > NSX Edges.
  3. Double-click an NSX Edge.
  4. Click Manage > VPN > IPSec VPN.
  5. Enable logging to log traffic flow between the local subnet and peer subnet.
    NSX Version Procedure
    6.4.6 and later
    1. Next to Logging Configuration, click Edit.
    2. Click the toggle switch to enable logging, and then select the logging level.
    3. Click Save.
    6.4.5 and earlier
    1. Next to Logging Policy, click expand.
    2. Select the Enable logging check box, and then select the logging level.
  6. Click Publish Changes.