Re: [FW-1] How to kill a vpn tunnel

[GoddardM [Permanent Link]]

Yes. Imbed the following commands in your script at some point; you will
need the IP of the originating tunnel. I'm not a script kiddie, but I'll
give you the basic outline.

send it the FW command line command: vpn tu
at this point a text GUI usually comes up, send it to null and sleep for a
few seconds)
send it the keystroke "6", send the text to null, and sleep for a second or
two
send it the IP address of the origination tunnel
sleep for 15-30 seconds
send the script an <enter>
finally, exit out by sending an "a"

My suggestion is to possibly send all the output to a log file instead of
null, but null would be the fastest way. sed/awk would work, as would a
regular shell script, probably.

Good luck.

Regards,
Matt Goddard
Security Information Team
Schneider National, Inc.
"To find out what one is fitted to do and to secure an opportunity to do so
is the key to happiness."



|---------+-------------------------------------------->
|         |           Bruno CHENEVIER <eknet AT FREE DOT FR>  |
|         |           Sent by: Mailing list for        |
|         |           discussion of Firewall-1         |
|         |           <FW-1-MAILINGLIST AT AMADEUS.US DOT CHEC|
|         |           KPOINT.COM>                      |
|         |                                            |
|         |                                            |
|         |           12/22/2004 11:19 AM              |
|         |           Please respond to Mailing list   |
|         |           for discussion of Firewall-1     |
|---------+-------------------------------------------->
  
>----------------------------------------------------------------------------------------------|
  |                                                                             
                 |
  |       To:       FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM           
                        |
  |       cc:                                                                   
                 |
  |       Subject:  [FW-1] How to kill a vpn tunnel                             
                 |
  
>----------------------------------------------------------------------------------------------|




Hi everybody,

Is it possible to kill a vpn tunnel with a script in order to kill it
everyday
for example.

Tanks

=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================

=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================