Update Networking/Sophos/Site-to-Site VPNs/IPSec/Automatic Tunnel Resetting.md
This commit is contained in:
@ -33,6 +33,12 @@ Now we need to make a user account that we will use inside the script to authent
|
|||||||
Now we need to configure an ACL within the Firewall to allow API access from the specific server we will be using in the next section.
|
Now we need to configure an ACL within the Firewall to allow API access from the specific server we will be using in the next section.
|
||||||
|
|
||||||
- Navigate to **Administration > Device Access > Local service ACL exception rule > "Add"**
|
- Navigate to **Administration > Device Access > Local service ACL exception rule > "Add"**
|
||||||
|
- Rule Name: `API Access (IPSec Tunnel Heartbeat Script)`
|
||||||
|
- Source Zone: `The Zone of the Server/Device that will be used to run the script, such as a server network.
|
||||||
|
- Source Network/Host: `<IP_HOST_OF_DEVICE_RUNNING_SCRIPT>`
|
||||||
|
- Destination Host: `XGS Firewall (Local IP)` (*This is an IP host pointing to the internal IP of the Firewall*)
|
||||||
|
- Services: `HTTPS`
|
||||||
|
- Action: `Accept`
|
||||||
|
|
||||||
## Server Environment
|
## Server Environment
|
||||||
### Choose a Server
|
### Choose a Server
|
||||||
@ -114,3 +120,17 @@ You need a place to put the script (and if on Windows, `curl.exe`). Follow the
|
|||||||
``` sh
|
``` sh
|
||||||
PLACEHOLDER
|
PLACEHOLDER
|
||||||
```
|
```
|
||||||
|
|
||||||
|
### Create Scheduled Task
|
||||||
|
At this point, you need this script to run automatically on its own every 5 minutes or so, so you need to create a task in the Windows Task Scheduler in order to achieve this.
|
||||||
|
|
||||||
|
=== "Windows"
|
||||||
|
|
||||||
|
- Open "**Task Scheduler**" on the device
|
||||||
|
- PLACEHOLDER
|
||||||
|
|
||||||
|
=== "Linux"
|
||||||
|
|
||||||
|
- PLACEHOLDER
|
||||||
|
- PLACEHOLDER
|
||||||
|
|
||||||
|
|||||||
Reference in New Issue
Block a user