This chapter showed you the basics of troubleshooting IPsec sessions on Cisco security appliances. The commands and processes used are very similar to those on IOS-based routers, reducing your learning curve if you already have experience with IPsec tunnels on IOS-based routers. Remember that in FOS 7.0, the debug commands have a level qualifier which affects the amount of debug output the command generates.
This chapter completes the configuration and troubleshooting part of this book. Next up is Part VI, "Case Study," where I pull many of the important elements together from this book and apply them to an example company's VPN implementation.