Monitoring VPN health

Unanswered Question
Apr 30th, 2007
User Badges:

Hi everyone,


I'm currently looking for a solution that will allow us to monitor the health of our VPN. I've looked into screen scraping the VPN status page but this appears to only show active sessions if any are connected. I thought about automating a cisco vpn client to login/out every hour and return a result but this would require a box to sit outside out network.


Does anyone out there have any VPN monitoring in place? does anyone have any ideas?


Thanks,

Warren

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
jbeltrame Tue, 05/01/2007 - 17:19
User Badges:

Hello,


What you could do is write a script to log into the firewall. Have the script run a show crypto ipsec sa, and grab the packets stats ( like encap/decap etc. ) This way you can see if the vpn is working correctly.

wazr-8098 Wed, 05/02/2007 - 18:30
User Badges:

Hi, thanks for the reply but will this give me the status of the vpn overall or just if one of our users are connected?

dfed00 Thu, 05/03/2007 - 05:24
User Badges:

Warren,


1. cisco has VPN MIB to provide a lot of info through snmp about active sessions

2. set up a syslog server and have your pix or vpn concentrator log there.


Actions

This Discussion