SNMP Polling - IPSec Tunnel Status

cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.

SNMP Polling - IPSec Tunnel Status

L3 Networker

I have downloaded the MIB's but cant find anything which would enable me to monitor the status of an IPSec tunnel.

 

Is it possible to monitor IPSec tunnel Up/Down via SNMP?

5 REPLIES 5

L2 Linker

There are following traps but not sure if there is OID to monitor.

 

panVPNTunnelStatusDownTrap

panVPNTunnelStatusUpTrap

Cyber Elite
Cyber Elite

Hello,

What I do is make sure I apply an IP address to each tunnel interface. Then have a monitoring solution that monitors the far end of the tunnel so that if its unreachable, there is something wrong with the tunnel possibly. Using a SIEM is another method if you are parsing the logs.

 

Just some thoughts.

L1 Bithead

The tunnel interfaces show up as interfaces via SNMP, we monitor the status of them using IF-MIB

@patmal

Not sure, but isn't the status of the tunnel interface always "up" even if the IPSec tunnel is down?

Yep, you are correct
  • 4778 Views
  • 5 replies
  • 0 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!