This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Kim_Moberg
Advisor
‎2019-01-18 11:15 AM

Gaia API include VPN shell functionalities

It is with great pleasure and expectation see the Gaia API today are GA.

Since the Mgmt API was released in R80.xx one can see need features being added from new R80.xx takes and HF.

It could really be useful to include VPN shell functionality into the Gaia API.

I have been wondering if it include methods like these CLISH vpn shell commands which I have been freely translated

This is freely translated API method function which doesn’t exist.

https://{{ip}}/gaia_api/vpn/show-tunnels-ike  (features show all peers, or peers ip)

https://{{ip}}/gaia_api/vpn/show-tunnels-IPsec  (features show all peers, or peers ip)

https://{{ip}}/gaia_api/vpn/delete-ipsec-tunnel-all 

https://{{ip}}/gaia_api/vpn/delete-ipsec-tunnel-peer 

https://{{ip}}/gaia_api/vpn/delete-ipsec-peer-username 

https://{{ip}}/gaia_api/vpn/delete-all-tunnels 

https://{{ip}}/gaia_api/vpn/delete-peer-username 

For example for showing all active IPSec tunnels and how to reset tunnel

 

Request method

Response

Get

https://{{ip}}/gaia_api/vpn/show-tunnels-IPsec

 

Content-Type: application/json

 

(based on Expert #> vpn shell show tunnels ipsec all

{

                      "remote-peer": "217.xxx.xxx.146"

                      "vpn-communityname": "Remote sites ZXY"

                      "ipsec-sa":

                                            {

                                                                  "ike-sa": "c5bf21bb5f1b27eb,a0dc9fa2de73855c"

                                                                 "inbound": "0xc2dc246c   (i: 0)"

                                                                 "outbound": "0x58db2b95   (i: 0)"

                                            }

                      "ipsec-sa":

                                            {

                                                                 "ike-sa": "386c4def8aa3f384,0c32301399c84669"

                                                                 "inbound": "0xb3cfd2     (i: 3)"

                                                                 "outbound": "0xf272e798   (i: 3)"

                                            }

}

PUT

https://{{ip}}/gaia_api/vpn/delete-ipsec-tunnel-peer

Content-Type: application/json

(based on Expert #> vpn tu del ipsec 217.xxx.xxx.146

{

                      "remote-peer": "217.xxx.xxx.146"

}

Question I ask last summer 2018

VPN tunnel Reset via API 

Let me hear what you all think of adding these VPN method?

Thanks

Kim

Best Regards
Kim
0 Replies

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events