Help
Cybersecurity Forum

This forum is for all security enthusiasts to discuss Fortinet's latest & evolving technologies and to connect & network with peers in the cybersecurity hemisphere. Share and learn on a broad range of topics like best practices, use cases, integrations and more. For support specific questions/resources, please visit the Support Forum or the Knowledge Base.

tetsou
New Contributor

Created on ‎02-21-2023 11:22 PM

ipsec vpn tunnel: vpn interface turn up and down

hello guys,

In my log event, i constantly notice vpn interface turn up and down for an IPSEC VPN tunnel a created 3 months ago. meanwhile the remote gateway address are static.


please reason for this ?

 

interface vpn.png

Labels:
1966
0 Kudos
2 REPLIES 2
parteeksharma
Staff
Staff

Created on ‎02-24-2023 08:00 AM

Hi Tetsou,

 

As per the screenshot, it seems you configured link monitor for the vpn tunnel or you have enabled SDWAN. Link monitoring measures the health of links by sending probing signals to a server and measuring the link quality based on latency, jitter, and packet loss.

If the monitored interface status goes down or the ping server is not reachable, the default route is removed from the routing table and then interface status will change.

You can check the link monitor status using below command:
diagnose sys link-monitor status

For more details please check below link:
https://community.fortinet.com/t5/FortiGate/Technical-Tip-Link-monitor/ta-p/197504

 

 

 

Regards,
Parteek

1932
0 Kudos
aliayyazu6u7i7yvh
New Contributor

Created on ‎03-04-2023 12:19 AM

Go to VPN Manager > Monitor to view the list of IPsec VPN tunnels. You can also bring the tunnels up or down on this pane Select a specific community from the tree menu to show only that community's tunnels.

 

To bring tunnels up or down:
  1. Go to VPN Manager > Monitor.
  2. Find and select the tunnel or tunnels that you need to bring up or down in the list.
  3. Click Bring Tunnel Up or Bring Tunnel Down from the toolbar or right-click menu
  4. Select OK in the confirmation dialog box to apply the change.
1914
0 Kudos
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.