Verifying tunnels

GRE tunnels

To check the operational status of the unencrypted GRE tunnel between both firewalls, disable the IPsec rule on each site by setting its status to off and enable the IPsec policy:

 


From a workstation located on the local network of Site A, ping a machine located on the local network of Site B. This machine should respond to requests.

Encrypted GRE tunnel in an IPsec tunnel

On each firewall, enable the IPsec rule by setting its status to on and enable the IPsec policy:

 


From a workstation located on the local network of Site A, send a ping from a machine located on the local network of Site B. This machine should respond to requests.

Verifying in SN Real-Time Monitor

The status of the IPsec tunnel can be viewed in the IPsec VPN tunnels tab in the VPN tunnels module in SN Real-Time Monitor:


 

Logs regarding the setup of IPsec tunnels can be looked up in the Logs > VPN module:


Verifying in the firewall web interface

In the firewall's web administration interface, you can display logs and reports to verify that your configuration operates correctly.