Re: [FW-1] How to kill a vpn tunnel

Subject:	Re: [FW-1] How to kill a vpn tunnel
From:	Marius Banica <mariusb AT OFFICE.ARTNET.CO DOT IL>
To:	FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
Date:	Tue, 28 Dec 2004 11:13:21 +0200

Run vpn tu

And choose the link that you want to kill no need to kill all the vpns


-----Original Message-----
From: Mailing list for discussion of Firewall-1
[mailto:FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM] On Behalf Of
Mitchell Jerry - Nashville
Sent: Monday, December 27, 2004 5:58 PM
To: FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
Subject: Re: [FW-1] How to kill a vpn tunnel

If I remember correctly, I believe you can use

vpn drv off
Or
vpn drv on

This kills or starts the entire vpn module. This will take down ALL vpns
though.
 _____________________________________________

Yes. Imbed the following commands in your script at some point; you will
need the IP of the originating tunnel. I'm not a script kiddie, but I'll
give you the basic outline.

send it the FW command line command: vpn tu at this point a text GUI
usually
comes up, send it to null and sleep for a few seconds) send it the
keystroke
"6", send the text to null, and sleep for a second or two send it the IP
address of the origination tunnel sleep for 15-30 seconds send the
script an
<enter> finally, exit out by sending an "a"

My suggestion is to possibly send all the output to a log file instead
of
null, but null would be the fastest way. sed/awk would work, as would a
regular shell script, probably.

Good luck.

Regards,
Matt Goddard
Security Information Team
Schneider National, Inc.
"To find out what one is fitted to do and to secure an opportunity to do
so
is the key to happiness."
________________________________________________________________________
__


Hi everybody,

Is it possible to kill a vpn tunnel with a script in order to kill it
everyday for example.

Tanks

=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================

--
No virus found in this incoming message.
Checked by AVG Anti-Virus.
Version: 7.0.296 / Virus Database: 265.6.5 - Release Date: 26/12/2004

=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================

<Prev in Thread]	Current Thread	[Next in Thread>
[FW-1] How to kill a vpn tunnel, Bruno CHENEVIER Re: [FW-1] How to kill a vpn tunnel, Reinhard Stich Re: [FW-1] How to kill a vpn tunnel, GoddardM Re: [FW-1] How to kill a vpn tunnel, Mitchell Jerry - Nashville Re: [FW-1] How to kill a vpn tunnel, Marius Banica <=

Previous by Date:	[FW-1] SecureClient R56 HFA02 available., Ray
Next by Date:	Re: [FW-1] DHCP Service, David Gillett
Previous by Thread:	Re: [FW-1] How to kill a vpn tunnel, Mitchell Jerry - Nashville
Next by Thread:	[FW-1] Edge abd private IP address management, Peter Goodridge
Indexes:	[Date] [Thread] [Top] [All Lists]