Solved

Find out ip address assignment for IPSEC VPN clients - Cisco PIX

Posted on 2010-08-16
5
321 Views
Last Modified: 2012-05-10
We have a cisco PIX setup as our IPSEC VPN endpoint. The PIX allocates an IP address in the 192.168.254.0 range to the VPN clients, authentication is done via a RADIUS server which queries AD.
I need to find out who is being assigned certain IP addresses when connecting.
Does anybody know if there is a command to show this.

Thanks
0
Comment
Question by:prodriveit
5 Comments
 
LVL 14

Expert Comment

by:anoopkmr
ID: 33444684
try

show vpn-sessiondb detail
0
 
LVL 11

Expert Comment

by:Coast-IT
ID: 33444691
doesn't

#show dhcp lease

work?
0
 
LVL 14

Accepted Solution

by:
anoopkmr earned 500 total points
ID: 33444705
or  u can try

show vpn-sessiondb detail remote
0
 
LVL 2

Author Closing Comment

by:prodriveit
ID: 33444760
show vpn-sessiondb detail remote is exactly the command thanks anoopkmr.

FYI show dhcp lease doesn't work, i think that would show info from the DHCP server not the vpn connection.

0
 
LVL 20

Expert Comment

by:RPPreacher
ID: 33445005
I always did this with show IPSec sa

http://www.cisco.com/en/US/docs/security/asa/asa71/command/reference/s3_711.html#wp1223827

Then filtered results.  Can't recall specific filter (on vacation, away from notes) but it will show connections from VPN pool
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Network Infrastructure for Branch Office 16 88
Gateway Resilience 4 49
Office 365 vs. In-House 4 80
Cisco UCM licensing - do the unregistered count? 2 49
OpenVPN is a great open source VPN server that is capable of providing quick and easy VPN access to your network on the cheap.  By default the software is configured to allow open access to your network.  But what if you want to restrict users to on…
Use of TCL script on Cisco devices:  - create file and merge it with running configuration to apply configuration changes
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

911 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

23 Experts available now in Live!

Get 1:1 Help Now