Description | This article describes how to configure an automation stitch to provide email alerts when the IPSec tunnel dead peer detection fails. |
Scope | FortiGate v6.x and v7.x. |
Solution |
The automation stitch has now been configured:
Example configuration in the CLI:
config system automation-trigger edit "IPSec_fails"
The following logs will trigger an email:
date=2023-10-18 time=02:31:10 eventtime=1697610670144517760 tz="-0400" logid="0101037136" type="event" subtype="vpn" level="error" vd="root" logdesc="IPsec DPD failed" msg="IPsec DPD failure" action="dpd" remip=Y.Y.Y.Y locip=X.X.X.X remport=500 locport=500 outintf="ppp2" cookies="0388753fb48e7e90/0227c1f78015a569" user="Y.Y.Y.Y" group="N/A" useralt="N/A" xauthuser="N/A" xauthgroup="N/A" assignip=N/A vpntunnel="Head Office" status="dpd_failure" advpnsc=0
Related documents: Technical Tip: Email alert notification when IPsec VPN tunnel is down |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2025 Fortinet, Inc. All Rights Reserved.