Monitor IPsec tunnel status in Juniper SRX?

General
1

Hi,
Is there anyone monitoring the status of IPSec tunnels in Juniper SRX devices?

I found an old plugin for Juniper NetScreen devices but nothing for SRX.

The actual tunnel interface (st0.1) is always up so I think a plugin would need to do some clever things checking for IKE and IPSec SA.

2

juniper_srx_ssh_vpn-0.5.mkp (5.7 KB)
comes without any warranty :wink:

works on our srx cluster but you might have to increase the snmp timeouts. Juniper systems can be super slow when replying to lots of snmp queries.