Created on 10-03-2022 02:18 AM Edited on 08-10-2024 04:47 AM By Jean-Philippe_P
Description |
This article describes how to monitor the individual VPN by SNMP (OID). |
Scope |
FortiGate. |
Solution |
OID '1.3.6.1.4.1.12356.101.12.2.2.1.2' is used to get the IPsec VPN Phase1 name and OID '1.3.6.1.4.1.12356.101.12.2.2.1.20.x.y' is used to monitor IPsec VPN Phase2. x is phase1 serial and y is phase2 serial.
Both of them are used as indexes in the VPN tunnel list, the serial number can be identified by running the CLI command 'dia vpn tunnel list':
proxyid_num=2 child_num=0 refcnt=11 ilast=9 olast=29 ad=/0
Note: The value for the serial is in hexadecimal format and needs to be converted to decimal format to use in the OID. For example, serial=10 would be 16 in decimal format and serial=1a would be 26 in decimal format.
If this OID returns the INTEGER: 1 means the tunnel is down and INTEGER: 2, means the tunnel is up. |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.