From 7533b0b784fc57f484fe7ecc18269233f38d719c Mon Sep 17 00:00:00 2001 From: Nicole Rappe Date: Thu, 12 Sep 2024 20:26:30 -0600 Subject: [PATCH] Update Networking/Sophos/Site-to-Site VPNs/IPSec/Automatic Tunnel Resetting.md --- .../IPSec/Automatic Tunnel Resetting.md | 22 ++++++++++++++++++- 1 file changed, 21 insertions(+), 1 deletion(-) diff --git a/Networking/Sophos/Site-to-Site VPNs/IPSec/Automatic Tunnel Resetting.md b/Networking/Sophos/Site-to-Site VPNs/IPSec/Automatic Tunnel Resetting.md index abee2fe..e4daec4 100644 --- a/Networking/Sophos/Site-to-Site VPNs/IPSec/Automatic Tunnel Resetting.md +++ b/Networking/Sophos/Site-to-Site VPNs/IPSec/Automatic Tunnel Resetting.md @@ -33,6 +33,12 @@ Now we need to make a user account that we will use inside the script to authent Now we need to configure an ACL within the Firewall to allow API access from the specific server we will be using in the next section. - Navigate to **Administration > Device Access > Local service ACL exception rule > "Add"** +- Rule Name: `API Access (IPSec Tunnel Heartbeat Script)` +- Source Zone: `The Zone of the Server/Device that will be used to run the script, such as a server network. +- Source Network/Host: `` +- Destination Host: `XGS Firewall (Local IP)` (*This is an IP host pointing to the internal IP of the Firewall*) +- Services: `HTTPS` +- Action: `Accept` ## Server Environment ### Choose a Server @@ -113,4 +119,18 @@ You need a place to put the script (and if on Windows, `curl.exe`). Follow the ``` sh PLACEHOLDER - ``` \ No newline at end of file + ``` + +### Create Scheduled Task +At this point, you need this script to run automatically on its own every 5 minutes or so, so you need to create a task in the Windows Task Scheduler in order to achieve this. + +=== "Windows" + + - Open "**Task Scheduler**" on the device + - PLACEHOLDER + +=== "Linux" + + - PLACEHOLDER + - PLACEHOLDER +