Cisco 3850 – Power Diagnostics

Some handy commands for testing the interfaces power

3850Switch# test cable-diagnostics tdr interface gigabitEthernet 1/0/1

……wait a few seconds……..

3850Sswitch# sh cable-diagnostics tdr interface gigabitEthernet 1/0/1

Results should not read Normal not Open.

Cisco ASA Tunnel Stuff

A few handy LAN-to-LAN Tunnel VPN commands:

To display all current IKE security associations (SAs) at a peer.

show crypto isakmp sa

To display all current IPsec SA’s.

show crypto ipsec sa

restarting all your ISAKMP VPN Tunnels:

clear crypto isakmp sa

If you need to reset one VPN then you need to reset the IPSEC SA to the peer IP at the other end of your tunnel.

clear ipsec sa peer x.x.x.x

Checking the uptime of a vpn tunnel using the following:

show vpn-sessiondb detail l2l


Handy NetFlow Commands

show ip flow interface

displays the NetFlow configuration for an interface

show ip cache flow

Verify that Netflow is operational and display summary of NetFlow statistics.

show ip cache verbose flow

Used to verify that NetFlow is operational and to display the detailed summary of NetFlow statistics.

show ip flow export

Use this command to display statistics for the NetFlow data export, including statistics for the main cache and for all other enabled caches.

show ip flow export template

This command is used to display statistics for the NetFlow data export (such as the template time-out rate and the refresh rate) for template-specific configurations.

NetFlow Configuration Guide