We value your feedback.
Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!
Course Of The Month
8 days, 7 hours left to enrollBecome a Premium Member and unlock a new, free course in leading technologies each month.
Solved
cisco SDM - VPN probs?
Posted on 2009-03-30
Hi,
We are using Cisco 87x series routers and get a lot of problems looking at SDM and the VPN status - sometimes they are down and the GUI shows them as up, other times it is the opposite.
Is this a know bug in SDM is there a way around this?
We are using Cisco 87x series routers and get a lot of problems looking at SDM and the VPN status - sometimes they are down and the GUI shows them as up, other times it is the opposite.
Is this a know bug in SDM is there a way around this?
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
-
2
3 Comments
If you're talking about VPN tunnels, SDM is likely reporting the SA status. The SA may still show as established although the tunnel isn't passing traffic. There are a number of reasons this could occur, but unfortunately there isn't a lot you can do about SDM showing the wrong status, because as long as the SA is still reporting as established, SDM will show those tunnels as up.
You can check the SA status using:
show crypto ipsec sa
You can reset established SAs using:
clear crypto sa
Once the SA has been reset, it should reestablish automatically as soon as it sees interesting traffic (I.E. traffic destined for the remote network.)
You can check the SA status using:
show crypto ipsec sa
You can reset established SAs using:
clear crypto sa
Once the SA has been reset, it should reestablish automatically as soon as it sees interesting traffic (I.E. traffic destined for the remote network.)
Featured Post
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
If you have an ASA5510 then this sort of thing would be better handled with a CSC Module, however on an ASA5505 thats not an option, and if you want to throw in a quick solution to stop your staff going to facebook during work time, then this is the…
There’s a movement in Information Technology (IT), and while it’s hard to define, it is gaining momentum. Some call it “stream-lined IT;” others call it “thin-model IT.”
Both in life and business – not all partnerships are created equal.
As the demand for cloud services increases, so do the number of self-proclaimed cloud partners. Asking the right questions up front in the partnership, will enable both parties …
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:
• Key questions to ask when considering a partnership to accelerate your business into the cloud
• Pitfalls and mistakes other partners…
Suggested Courses
Course of the Month8 days, 7 hours left to enroll
Earn Certification
Cisco CCNP Security: SIMOS
$197.00$177.30
Earn Certification
Cisco CCNA Security: IINS v3.0
$197.00$177.30
734 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.