Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
aionescu
Staff
Staff

Created on ‎08-03-2021 02:14 AM Edited on ‎11-30-2025 10:18 PM By Community Manager

Article Id 196582

Technical Tip: Email alert notification when IPsec VPN tunnel is down

Description


This article describes how to use automation stitches to automatically send alert emails if the status of the VPN tunnel changes.

 

Scope

 

FortiGate.

Solution

 

  1. Create a new Automation Stitch: Go to Security Fabric -> Automation and select 'Create New'.
  2. Assign a name, select Add Trigger -> Create -> FortiOS Event Log, select 'IPsec connection status changed' in the Event field, and select Apply

 

IPsec stitch.PNG

 

 If multiple IPsec tunnels are configured, use the vpntunnel filter in the Field Filter(s) section to filter for a particular tunnel.

 

Screenshot 2025-11-28 121747 edit.png

 

Specify the email address that the alerts will be sent to and select Apply:

 
email sent.PNG
 
Select OK to save the changes. Flushing the tunnel will trigger the event and send the email alert:
 
 
The alert email is received:
 

 
 
The following commands can be used for debugging: 
 
diagnose debug reset
diagnose debug application alertmail -1
diagnose debug enable
17076
0 Kudos
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.