asa, Cisco, configuration, General, Tunnel, VPN

Cisco ASA Tunnel Stuff

A few handy LAN-to-LAN Tunnel VPN commands:

To display all current IKE security associations (SAs) at a peer.

show crypto isakmp sa

To display all current IPsec SA’s.

show crypto ipsec sa

restarting all your ISAKMP VPN Tunnels:

clear crypto isakmp sa

If you need to reset one VPN then you need to reset the IPSEC SA to the peer IP at the other end of your tunnel.

clear ipsec sa peer x.x.x.x

Checking the uptime of a vpn tunnel using the following:

show vpn-sessiondb detail l2l

 

Leave a Reply

Fill in your details below or click an icon to log in:

Gravatar
WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Cancel

Connecting to %s