Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 746
  • Last Modified:

Is there a way to reset a Site-Site tunnel for a CISCO ASA?

I have a CISCO ASA with 5 Site-Site tunnels | One of them is having an issue | Is there a way to reset the site-site tunnel for just that one location.
0
yostnet
Asked:
yostnet
  • 6
  • 5
2 Solutions
 
millsclCommented:
Under the ASDM if you go to:

Monitoting on the top row.

Then the VPN Radio Button along the side.

Click "VPN Statistics".

You can selectively kill certain sessions both site2site and remote access.
0
 
yostnetAuthor Commented:
I see a logout | is that it?
0
 
yostnetAuthor Commented:
I did and went away
0
What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

 
millsclCommented:
As soon as there's traffic to go across the tunnel then it should re-establish.  Do you want it gone for good?
0
 
yostnetAuthor Commented:
no on the gone for good / just trying to reset it as there are some issues getting the tunnel re-established and did not want to have to reboot the firewall.
0
 
millsclCommented:
ok.  this should do it then....
0
 
yostnetAuthor Commented:
somewhat unrelated / is there a way to reset the ASDM or SSH subsystems.  I have a 5510 that seemingly over the past few months - has had an issue where I cannot ASDM or SSH to it. /

As a quick fix, I have just rebooted in the evening.

thanks
0
 
millsclCommented:
Not sure on that one although I believe there is a bug related to this in some of the more recent firewall code.
0
 
yostnetAuthor Commented:
I think that we are on 8.03
0
 
millsclCommented:
ya...i think that version has the bug that breaks SSH.

Cisco really did a number on that one...made a security device break so you can access it...securely!

0
 
yostnetAuthor Commented:
probably will upgrade to 8.21 before long as I am going to put a second device in and setup failover.
0
 
Pete LongTechnical ConsultantCommented:
clear isakmp sa
SA will re-establish as soom as interesting VPN traffic is seen so all tunnels will go down and come back as soon as the crytomap fires :)
0

Featured Post

Become an Android App Developer

Ready to kick start your career in 2018? Learn how to build an Android app in January’s Course of the Month and open the door to new opportunities.

  • 6
  • 5
Tackle projects and never again get stuck behind a technical roadblock.
Join Now