Permanent/Monitored VPN tunnel(s) down for Check Point


Check Point


Some VPN tunnels are set to be permanent, or monitored, to ensure they are always up. Indeni will alert if such VPN tunnels are down.

Remediation Steps

Review the cause for the tunnels being down.

How does this work?

By using the Check Point built-in "vpn tu" command the current list of established tunnels is retrieved. The script also collects a list of permanent tunnels even if they are down.

Why is this important?

VPN tunnels are vital for secure long distance communication. Often it is not noticed that its down until a system that relies on communicating over the tunnel malfunctions.

Without Indeni how would you find this?

An administrator could login and manually run the command, or view the tunnel status from Check Point SmartView Monitor.

View Source Code