VPN tunnels get built and everything works but we notice the lines are unstable. It also seems that when internet is available again, that the VPN tunnel refuses to re-establish. It takes some time before (some counters?) something gets reset and the tunnel can be rebuild again. The quickest way the end users know is rebooting the firewall.
Monitoring Tunnels - Check Point Software Each VPN tunnel in the community can be set as a Permanent tunnel. Since Permanent tunnels are constantly monitored. A log, alert, or user defined action can be issued when the VPN tunnel is down. Permanent tunnels can only be established between Check Point gateways. The configuration of Permanent tunnels takes place on the community level and: Solved: Command to check IPSEC tunnel on ASA 55 - Cisco The field with "Connection: x.x.x.x" lists the remote VPN device IP address. The field with "Login Time" lists the time/date when the L2L VPN was formed. The field with "Duration" shows how long the L2L VPN has been up. Rest of the fields give information on the encryption, data transfered etc - Jouni VPN Tests and Checks (How to See if Your VPN is Working)
Solved: Viewing and Resetting VPN tunnels in R80 - Check
UniFi - Verifying and Troubleshooting IPsec VPN on USG To see if traffic is traversing the tunnel run these commands on the USG while sending a ping to a remote client: sudo tcpdump -npi vti0 (if using Auto IPsec VPN) sudo tcpdump -npi vti64 (if manual VPN with dynamic routing enabled) Take a look at the packet in/packet out counters with "show vpn ipsec sa", see if any are making it across.
Each VPN tunnel in the community may be set to be a Permanent Tunnel. Since Permanent Tunnels are constantly monitored, if the VPN tunnel is down, then a log, alert, or user defined action, can be issued. A VPN tunnel is monitored by periodically sending "tunnel test" packets.
Solved: Command to check IPSEC tunnel on ASA 55 - Cisco The field with "Connection: x.x.x.x" lists the remote VPN device IP address. The field with "Login Time" lists the time/date when the L2L VPN was formed. The field with "Duration" shows how long the L2L VPN has been up. Rest of the fields give information on the encryption, data transfered etc - Jouni VPN Tests and Checks (How to See if Your VPN is Working)