Monitoring Libreswan IPsec VPN tunnel

Support forum for Nagios Core, Nagios Plugins, NCPA, NRPE, NSCA, NDOUtils and more. Engage with the community of users including those using the open source solutions.
Locked
kaushalshriyan
Posts: 119
Joined: Fri May 22, 2015 7:12 am

Monitoring Libreswan IPsec VPN tunnel

Post by kaushalshriyan »

Hi,

I am running Libreswan IPsec VPN tunnel and the details are as below

Code: Select all

ipsec --version
Linux Libreswan 3.27 (netkey) on 3.10.0-957.5.1.el7.centos.plus.x86_64
ipsec whack --trafficstatus
006 #4: "primary", type=ESP, add_time=1549763990, inBytes=5703, outBytes=2750, id='128.65.31.14'
006 #3: "secondary", type=ESP, add_time=1549763990, inBytes=656, outBytes=864, id='128.65.31.15'
Is there a way to check if the IPsec tunnel is working or not?

Also how do i monitor IP and port for network connectivity? For example

Code: Select all

#nc -v 192.168.1.10 5643 
Ncat: Version 7.50 ( https://nmap.org/ncat )
Ncat: Connected to 192.168.1.10:5643.
Best Regards,

Kaushal
User avatar
cdienger
Support Tech
Posts: 5045
Joined: Tue Feb 07, 2017 11:26 am

Re: Monitoring Libreswan IPsec VPN tunnel

Post by cdienger »

Check out check_tcp to verify a IP and port are up - including IPs and ports only accessible via the VPN. There is also https://exchange.nagios.org/directory/P ... ec/details or https://exchange.nagios.org/directory/P ... c2/details.
As of May 25th, 2018, all communications with Nagios Enterprises and its employees are covered under our new Privacy Policy.
kaushalshriyan
Posts: 119
Joined: Fri May 22, 2015 7:12 am

Re: Monitoring Libreswan IPsec VPN tunnel

Post by kaushalshriyan »

Thanks cdienger for the reply and much appreciated. I will let you know if i get into issues while setting it up.

Best Regards,

Kaushal
User avatar
cdienger
Support Tech
Posts: 5045
Joined: Tue Feb 07, 2017 11:26 am

Re: Monitoring Libreswan IPsec VPN tunnel

Post by cdienger »

Sounds good. Keep us posted!
As of May 25th, 2018, all communications with Nagios Enterprises and its employees are covered under our new Privacy Policy.
Locked