IPsec Exporter

Prometheus exporter for ipsec metrics, written in Go.

Deprecation

PROJECT DEPRECATED: This project is no longer maintained and patched for security updates. Repository will be archived soon.

The IPsec exporter is determining the state of the configured IPsec tunnels via the following procedure.

Starting up the ipsec.conf is read. All tunnels configured via the conn keyword are observed.
If the /metrics endpoint is queried, the exporter calls ipsec status <tunnel name> for each configured connection. The output is parsed.
- If the output contains ESTABLISHED, we assume that only the connection is up.
- If the output contains INSTALLED, we assume that the tunnel is up and running.
- If the output contains no match, we assume that the connection is down.

Metric	Value	Description
ipsec_status	0	The connection is established and tunnel is installed. The tunnel is up and running.
ipsec_status	1	The connection is established, but the tunnel is not up.
ipsec_status	2	The tunnel is down.
ipsec_status	3	The tunnel is in an unknown state.
ipsec_status	4	The tunnel is ignored.

Name		Name	Last commit message	Last commit date
Latest commit History 42 Commits
.github/workflows		.github/workflows
cmd		cmd
exporter		exporter
ipsec		ipsec
.gitignore		.gitignore
CHANGELOG.md		CHANGELOG.md
LICENSE		LICENSE
README.md		README.md
go.mod		go.mod
go.sum		go.sum
ipsec_exporter.go		ipsec_exporter.go