[strongSwan] How to determine how many connections are currently active?
Andreas Steffen
andreas.steffen at strongswan.org
Wed Jul 31 12:14:30 CEST 2019
Hi Houman,
you can get the number of active IKE SAs via
swanctl --list-sas | grep ESTABLISHED | wc -l
if you are using the vici interface or
ipsec statusall | grep ESTABLISHED | wc -l
if you are using the legacy whack interface.
For the total number of active CHILD SAs replace ESTABLISHED
by INSTALLED in the grep query.
Best regards
Andreas
On 31.07.19 10:05, Houman wrote:
> Good morning,
>
>
> What is the best way to determine how many connections are currently
> active on the StrongSwan server?
>
>
> Maybe there is a simpler way but I thought of one way. I’m using
> FreeRadius with Mysql DB as storage.
>
>
> There are three fields that capture the start (acctstarttime), ongoing
> (acctupdatetime) and the end (acctstoptime) of a connection.
>
>
> I could theoretically filter for all acctupdatetime that start from
> today and have a acctstoptime that is null. The count of these records
> would be the approximate number of active connections to the server.
>
>
> Is there a better way to achieve this or do you agree to this approach?
>
>
>
> Many Thanks,
>
> Houman
>
--
======================================================================
Andreas Steffen andreas.steffen at strongswan.org
strongSwan - the Open Source VPN Solution! www.strongswan.org
Institute for Networked Solutions
HSR University of Applied Sciences Rapperswil
CH-8640 Rapperswil (Switzerland)
===========================================================[INS-HSR]==
More information about the Users
mailing list