Support Support Downloads Knowledge Base Juniper Support Portal Community

Knowledge Base

Search our Knowledge Base sites to find answers to your questions.

Ask All Knowledge Base Sites All Knowledge Base Sites JunosE Defect (KA)Knowledge BaseSecurity AdvisoriesTechnical BulletinsTechnotes Sign in to display secure content and recently viewed articles

[ScreenOS] How to alter the VPN Monitor settings

0

0

Article ID: KB24645 KB Last Updated: 17 Feb 2021Version: 3.0
Summary:
This article provides information on how to alter the VPN Monitor settings.
Symptoms:
  • The VPN monitor is generally used to detect and report if the VPN is down.

  • If the VPN Monitor detects that a virtual tunnel is down, it marks it as down; which brings all the associated routes down.

  • By altering the VPN monitor settings, you can speed up the VPN failover process.
Solution:
By default, the VPN monitor interval is 10 seconds and the VPN monitor threshold is 10. So, in case the VPN monitor fails, it will take 100 seconds to bring the tunnel interface down.

You can verify the VPN monitor settings by running the following command:
get vpnmonitor
Vpn monitor interval : 10(seconds)
Vpn monitor threshold: 10
You can change the VPN monitor and threshold values by using the following command:
set vpnmonitor interval <number>
set vpnmonitor threshold <number>
By reducing the VPN monitor or VPN threshold values, you can expedite the VPN failover, as the tunnel routes will failover accordingly.

Note: Setting the VPN monitor threshold/interval value to a very low number is not recommended, as this can cause unnecessary failover.
Modification History:
2021-02-07: Added relevant KB links related to VPN monitoring
2019-05-23: Content reviewed for accuracy.  No changes made.
 

Related Links

Comment on this article > Affected Products Browse the Knowledge Base for more articles related to these product categories. Select a category to begin.

Getting Up and Running with Junos

Getting Up and Running with Junos Security Alerts and Vulnerabilities Product Alerts and Software Release Notices Problem Report (PR) Search Tool EOL Notices and Bulletins JTAC User Guide Customer Care User Guide Pathfinder SRX High Availability Configurator SRX VPN Configurator Training Courses and Videos End User Licence Agreement Global Search