Back to All Scenarios
PASSEDnetwork / vpn_tunnel
WireGuard VPN Tunnel Down — Key Mismatch After Rotation
A WireGuard VPN tunnel between two sites is down because keys were rotated on one end but not the other. Handshake failing.
Pattern
UNKNOWN
Expected: VPN_TUNNEL_DOWN
Severity
MEDIUM
Confidence
68%
Remediation
Auto-Heal
Test Results
| Metric | Expected | Actual | Result |
|---|---|---|---|
| Pattern Recognition | VPN_TUNNEL_DOWN | UNKNOWN | |
| Severity Assessment | HIGH | MEDIUM | |
| Incident Correlation | N/A | None | |
| Cascade Escalation | N/A | No | |
| Remediation | — | Auto-Heal — Corax resolves autonomously |
Scenario Conditions
WireGuard on Ubuntu 22.04. Site-to-site tunnel. Keys rotated on server side 1 hour ago. Client side still using old keys. Handshake failing. 30 users affected.
Injected Error Messages (1)
WireGuard tunnel down — wg0 handshake failing, 'no valid handshake response', peer public key mismatch after server-side key rotation 1 hour ago, 30 branch users disconnected
Neural Engine Root Cause Analysis
Unrecognized error pattern — this may be a new type of failure not yet cataloged.
Remediation Plan
Trigger autonomous healing to diagnose and fix. Manual investigation may be needed if healing cannot resolve.
Improvements Applied
- Pattern unrecognized — consider adding keywords for VPN_TUNNEL_DOWN
- Severity: MEDIUM (expected HIGH)
Tested: 2026-04-02Monitors: 1 | Incidents: 1Test ID: cmnhnoopv0022lig7fwg4n3jj