Page 1 of 1

Monitoring Libreswan IPsec VPN tunnel

Posted: Sun Feb 10, 2019 12:55 pm
by kaushalshriyan
Hi,

I am running Libreswan IPsec VPN tunnel and the details are as below

Code: Select all

ipsec --version
Linux Libreswan 3.27 (netkey) on 3.10.0-957.5.1.el7.centos.plus.x86_64
ipsec whack --trafficstatus
006 #4: "primary", type=ESP, add_time=1549763990, inBytes=5703, outBytes=2750, id='128.65.31.14'
006 #3: "secondary", type=ESP, add_time=1549763990, inBytes=656, outBytes=864, id='128.65.31.15'
Is there a way to check if the IPsec tunnel is working or not?

Also how do i monitor IP and port for network connectivity? For example

Code: Select all

#nc -v 192.168.1.10 5643 
Ncat: Version 7.50 ( https://nmap.org/ncat )
Ncat: Connected to 192.168.1.10:5643.
Best Regards,

Kaushal

Re: Monitoring Libreswan IPsec VPN tunnel

Posted: Mon Feb 11, 2019 3:50 pm
by cdienger
Check out check_tcp to verify a IP and port are up - including IPs and ports only accessible via the VPN. There is also https://exchange.nagios.org/directory/P ... ec/details or https://exchange.nagios.org/directory/P ... c2/details.

Re: Monitoring Libreswan IPsec VPN tunnel

Posted: Tue Feb 12, 2019 11:38 am
by kaushalshriyan
Thanks cdienger for the reply and much appreciated. I will let you know if i get into issues while setting it up.

Best Regards,

Kaushal

Re: Monitoring Libreswan IPsec VPN tunnel

Posted: Tue Feb 12, 2019 1:28 pm
by cdienger
Sounds good. Keep us posted!