Can't monitor vti gateways

Started by flyshoo, February 05, 2025, 11:57:30 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
February 05, 2025, 11:57:30 PM Last Edit: February 06, 2025, 12:08:25 AM by flyshoo
Hello Community,
I have searched for an answer to this and can't find one.  I have setup 2 routed IPSEC VPNs with VTI networks 169.254.254.4/30 and 169.254.254.8/30. I want to monitor the VTIs but monitoring these VTIs fail.  The VPN is up and I can access all the networks across the VPNs. 
I have also observed some strange behavior, I can't ping from the shell or the WebGui but when I do a tcpdump I can see icmp traffic from the other side, Palo Alto with static route monitoring.  So I know the VTI can respond to pings but the OPNSense side won't respond or send ping requests from the VTIs.

Any ideas?

My goal is to use Gateway Group with monitoring to failover between the 2 VPNs.

OPNSense - v24.7.12_4
February 15, 2025, 12:59:29 AM #1
I guess I'll assume this isn't supported yet.
Print
Go Up Pages1
User actions