- Products
- Learn
- Local User Groups
- Partners
-
More
Celebrate the New Year
With CheckMates!
Value of Security
Vendor Self-Awareness
Join Us for CPX 360
23-24 February 2021
Important certificate update to CloudGuard Controller, CME,
and Azure HA Security Gateways
How to Remediate Endpoint & VPN
Issues (in versions E81.10 or earlier)
Mobile Security
Buyer's Guide Out Now
Important! R80 and R80.10
End Of Support around the corner (May 2021)
Hi
we are enabling IPSec tunnel monitoring, we need the tunnel interface index value. how to find the tunnel interface index value. I have gone through with the VPN guide but couldn't find the relevant information. Please help
Please write what a tunnel interface index value is - in 12 years of CP (and other) VPN i never have encountered this index...
Are you asking about the Security Parameter Index (SPI) value? This is a uniquely generated value in the ESP header that identifies which tunnel (and secret key) encrypted VPN traffic is associated with; it is not a fixed value over a long period of time, only for the lifetime of a tunnel.
If you are using route-based VPNs employing a VPN Tunnel Interface (VTI), then you may be referring to the value displayed by fw ctl iflist:
[Expert@R8040:0]# fw ctl iflist
1 : eth0
2 : eth1
3 : vpnt1
Not sure if you are looking for the "ifn" value (which is 3 for the VTI vpnt1) or the "VPN Tunnel ID" which is specified when a VTI is created, and automatically becomes part of the interface name, "1" in this example for VTI vpnt1.
About CheckMates
Learn Check Point
Advanced Learning
WELCOME TO THE FUTURE OF CYBER SECURITY