: IPSec Tunnel Status on the Firewall
Focus
Focus

IPSec Tunnel Status on the Firewall

Table of Contents

IPSec Tunnel Status on the Firewall

  • Network > IPSec Tunnels
To view the status of currently defined IPSec VPN tunnels, open the IPSec Tunnels page. The following status information is reported on the page:
  • Tunnel Status (first status column)—Green indicates an IPSec phase-2 security association (SA) tunnel. Red indicates that IPSec phase-2 SA is not available or has expired.
  • IKE Gateway Status—Green indicates a valid IKE phase-1 SA or IKEv2 IKE SA. Red indicates that IKE phase-1 SA is not available or has expired.
  • Tunnel Interface Status—Green indicates that the tunnel interface is up (because tunnel monitor is disabled or because tunnel monitor status is UP and the monitoring IP address is reachable). Red indicates that the tunnel interface is down because the tunnel monitor is enabled and the remote tunnel monitoring IP address is unreachable.