[Openswan Users] How to know when a tunnel is down

[richard witt]

I posted yesterday on what everyone was using to know when a tunnel is
down. Other than pinging a host on the other end of the tunnel, what
usually indicates that a tunnel is down? Some of you said you were
using scripts and such to look at the logs and then perform an
action/send an alert/etc. Can some of you give some of those examples?
I am sorry if this all sounds so noobish. I inherited these openswan
servers and the management of them a couple years ago and i have been
learning steadily since. I even bought the book Building and
Integrating Virtual Private Networks with Openswan, but the way it
reads i should have some other information.


On a side note is there a way to do a pluto debug on just a certain
connection and not on all of the connections? We currently have 64
site to site tunnels on one server and about 12 or so on another,  so
we  cant just restart ipsec anytime we want to debug one connection.
Any help would be much appreciated.