Update Networking/Sophos/Site-to-Site VPNs/IPSec/Automatic Tunnel Resetting.md
This commit is contained in:
@ -33,6 +33,12 @@ Now we need to make a user account that we will use inside the script to authent
|
||||
Now we need to configure an ACL within the Firewall to allow API access from the specific server we will be using in the next section.
|
||||
|
||||
- Navigate to **Administration > Device Access > Local service ACL exception rule > "Add"**
|
||||
- Rule Name: `API Access (IPSec Tunnel Heartbeat Script)`
|
||||
- Source Zone: `The Zone of the Server/Device that will be used to run the script, such as a server network.
|
||||
- Source Network/Host: `<IP_HOST_OF_DEVICE_RUNNING_SCRIPT>`
|
||||
- Destination Host: `XGS Firewall (Local IP)` (*This is an IP host pointing to the internal IP of the Firewall*)
|
||||
- Services: `HTTPS`
|
||||
- Action: `Accept`
|
||||
|
||||
## Server Environment
|
||||
### Choose a Server
|
||||
@ -113,4 +119,18 @@ You need a place to put the script (and if on Windows, `curl.exe`). Follow the
|
||||
|
||||
``` sh
|
||||
PLACEHOLDER
|
||||
```
|
||||
```
|
||||
|
||||
### Create Scheduled Task
|
||||
At this point, you need this script to run automatically on its own every 5 minutes or so, so you need to create a task in the Windows Task Scheduler in order to achieve this.
|
||||
|
||||
=== "Windows"
|
||||
|
||||
- Open "**Task Scheduler**" on the device
|
||||
- PLACEHOLDER
|
||||
|
||||
=== "Linux"
|
||||
|
||||
- PLACEHOLDER
|
||||
- PLACEHOLDER
|
||||
|
||||
|
||||
Reference in New Issue
Block a user