Paul Dugas wrote:
> If not, is there a command in the stock image that would dump the state
> of the tunnels that I could call from exec.php and possibly via an added
You could use "/usr/sbin/setkey -D" through exec.phpwhich shows the
current security associations (SA) for IPSec. These effectively are the
IPSec tunnels that are up at the moment (or should be).
Since m0n0wall currently lacks some enhanced IPSec features like
Dead-Peer-Detections it's hard to say 100% from SA that a tunnel is up
I would suggest a combination of ping through the tunnel + a check with
the above command. This should give you a good indication of tunnel uptime.