VPN Tunnel Monitoring

2 years ago

20 minutes ago, Austin Culbertson said:

@Stuart Weenig In our case (and likely in Kirby's case, as evidenced by his statement that he sends a ping along the tunnel), our tunnels are going idle, due to no traffic traversing them. There is a way to configure keepalives to keep the tunnels active, but that takes some configuration, and I'm not 100% it's always supported by the remote endpoints?

It's always possible there is an OID that I've simply never been able to find that reports this 'Down reason,' but I'm going to guess there's a decent chance that your circumstances (a backup device) might be different (though, still helpful!).

Yes, you're correct. The tunnel is going "down" because of an idle timeout, which in my opinion, shouldn't warrant an alarm in LM. I could change the timeouts on the tunnels in the ASA but I don't really see a good reason too. IMHO if there is no traffic going through the tunnel than it should shutdown until it's needed again. I just don't need an alarm telling me the tunnel shutdown because of an idle timeout. I don't think there is any OID that gives LM that info though and I'm not sure how one could do it programmatically either.

Forum Discussion

Related Content

Tunnel interface monitoring in LoigicMonitor

SonicWall VPN Tunnel Monitoring

Checkpoint IPsec Tunnel Monitoring.

Cisco IPSec Aggregate Tunnels- False Alerts?

Process Monitoring

Recent Discussions

Does anyone monitor their iDracs with LM? Tons of duplicate alerts

How do you monitor Running Services on Linux boxes?

Event Sources SNMP and Windows collectors?

Can anyone help modify this Datasource to be able to use any port?

⚠️COMMUNITY OUTAGE⚠️ Posts and replies fail only titles visible