Cisco ASA Tunnel Stuff

A few handy LAN-to-LAN Tunnel VPN commands:

To display all current IKE security associations (SAs) at a peer.

show crypto isakmp sa

To display all current IPsec SA’s.

show crypto ipsec sa

restarting all your ISAKMP VPN Tunnels:

clear crypto isakmp sa

If you need to reset one VPN then you need to reset the IPSEC SA to the peer IP at the other end of your tunnel.

clear ipsec sa peer x.x.x.x

Checking the uptime of a vpn tunnel using the following:

show vpn-sessiondb detail l2l

Enter your comment here...

Fill in your details below or click an icon to log in:

Email (required) (Address never made public)

Name (required)

Website

You are commenting using your WordPress.com account. ( Log Out / Change )

You are commenting using your Google+ account. ( Log Out / Change )

You are commenting using your Twitter account. ( Log Out / Change )

You are commenting using your Facebook account. ( Log Out / Change )

Connecting to %s

%d bloggers like this:

MystaJoneS