Solved

Cisco PIX 7.1(1) clearing / dropping / killing / logout a specific isakmp point to point tunnel

Posted on 2006-06-15
3
402 Views
Last Modified: 2013-11-16
Hi:  When you do a

show isakmp sa

you get something back like

73  IKE Peer: 111.222.111.222
    Type    : L2L             Role    : initiator
    Rekey   : no              State   : MM_ACTIVE

There is a clear isakmp sa command but it will clear ALL isakmp sessions.  Is there any way to clear just the one (#73) session in this case?

Thanks in advance
0
Comment
Question by:ort11
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 5

Accepted Solution

by:
renill earned 250 total points
ID: 16919357
clear ipsec sa

To clear IPSec SAs entirely or based on specified parameters, use the clear ipsec sa command in global configuration and privileged EXEC modes. You can also use an alternate form: clear crypto ipsec sa.

clear ipsec sa [counters | entry peer-addr protocol spi | peer peer-addr | map map-name]
Syntax Description
counters  (Optional) Clears all counters.
entry (Optional) Clears IPSec SAs for a specified IPSec peer, protocol and SPI.
map map-name (Optional) Clears IPSec SAs for the specified crypto map.
peer (Optional) Clears IPSec SAs for a specified peer.
peer-addr Specifies the IP address of an IPSec peer.
protocol Specifies an IPSec protocol: esp or ah.
spi Specifies an IPSec SPI.

clear ipsec sa peer-addr 111.222.111.222

check this out..
0
 
LVL 1

Author Comment

by:ort11
ID: 16942356
Cool, will check this out and get back.
0
 
LVL 1

Author Comment

by:ort11
ID: 16961279
clear ipsec sa peer 111.222.111.222

seems to work fine.  have to leave out the -addr

thanks
0

Featured Post

Threat Trends for MSPs to Watch

See the findings.
Despite its humble beginnings, phishing has come a long way since those first crudely constructed emails. Today, phishing sites can appear and disappear in the length of a coffee break, and it takes more than a little know-how to keep your clients secure.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Ever wonder what it's like to get hit by ransomware? "Tom" gives you all the dirty details first-hand – and conveys the hard lessons his company learned in the aftermath.
Part Two of the two-part Q&A series with MalwareTech.
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…
Suggested Courses

636 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question