Detect IPSEC down on Juniper

Tags: #<Tag:0x00007f3b9135e890> #<Tag:0x00007f3b9135e598>

It looks as if the support for detecting down IPSEC tunnels does not extend to Juniper SRX.

The relevant mib is JUNIPER-JS-IPSEC-VPN-MIB, the oid to walk is jnxJsIpSecTunState, and the feature depends on jnxJsIpSecTunCfgMonState being enabled.

If I provide a box to test on, anyone care to have a go?

We monitor more than just the state of Cisco ipsec tunnels so it depends on if it provides the same level of info which from the table you’ve mentioned doesn’t.

That means it wouldn’t be easy to add this in.

Are you able to monitor Ipsec on juniper box ?