asked on
IPSec VPN
Dear Team,
I have IPsec VPN from my 1841 cisco router and the problem is that sometimes the VPN is not shown when i run teh command sh crypto isakmp sa, but i can ping the remote host on the remote network.Othertimes the VPN state is MM_NO_STATE, but still i can ping the other remote end.Why is this happening.i have added my sh ver of router below.
XXXX#sh ver
Cisco IOS Software, 1841 Software (C1841-ADVIPSERVICESK9-M),
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2006 by Cisco Systems, Inc.
Compiled Mon 15-May-06 13:52 by prod_rel_team
ROM: System Bootstrap, Version 12.4(13r)T8, RELEASE SOFTWARE (fc1)
UPS-Kems uptime is 2 weeks, 5 days, 5 hours, 17 minutes
System returned to ROM by reload at 02:30:08 UTC Tue Jun 21 2011
System image file is "flash:c1841-advipservices
This product contains cryptographic features and is subject to United
States and local country laws governing import, export, transfer and
use. Delivery of Cisco cryptographic products does not imply
third-party authority to import, export, distribute or use encryption.
Importers, exporters, distributors and users are responsible for
compliance with U.S. and local country laws. By using this product you
agree to comply with applicable laws and regulations. If you are unable
to comply with U.S. and local laws, return this product immediately.
A summary of U.S. laws governing Cisco cryptographic products may be found at:
http://www.cisco.com/wwl/export/crypto/tool/stqrg.html
If you require further assistance please contact us by sending email to
export@cisco.com.
Cisco 1841 (revision 7.0) with 116736K/14336K bytes of memory.
Processor board ID FCZ130692B8
2 FastEthernet interfaces
1 Virtual Private Network (VPN) Module
DRAM configuration is 64 bits wide with parity disabled.
191K bytes of NVRAM.
31360K bytes of ATA CompactFlash (Read/Write)
Configuration register is 0x2102
XXXXX#
Thanks.
Munawar
I have IPsec VPN from my 1841 cisco router and the problem is that sometimes the VPN is not shown when i run teh command sh crypto isakmp sa, but i can ping the remote host on the remote network.Othertimes the VPN state is MM_NO_STATE, but still i can ping the other remote end.Why is this happening.i have added my sh ver of router below.
XXXX#sh ver
Cisco IOS Software, 1841 Software (C1841-ADVIPSERVICESK9-M),
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2006 by Cisco Systems, Inc.
Compiled Mon 15-May-06 13:52 by prod_rel_team
ROM: System Bootstrap, Version 12.4(13r)T8, RELEASE SOFTWARE (fc1)
UPS-Kems uptime is 2 weeks, 5 days, 5 hours, 17 minutes
System returned to ROM by reload at 02:30:08 UTC Tue Jun 21 2011
System image file is "flash:c1841-advipservices
This product contains cryptographic features and is subject to United
States and local country laws governing import, export, transfer and
use. Delivery of Cisco cryptographic products does not imply
third-party authority to import, export, distribute or use encryption.
Importers, exporters, distributors and users are responsible for
compliance with U.S. and local country laws. By using this product you
agree to comply with applicable laws and regulations. If you are unable
to comply with U.S. and local laws, return this product immediately.
A summary of U.S. laws governing Cisco cryptographic products may be found at:
http://www.cisco.com/wwl/export/crypto/tool/stqrg.html
If you require further assistance please contact us by sending email to
export@cisco.com.
Cisco 1841 (revision 7.0) with 116736K/14336K bytes of memory.
Processor board ID FCZ130692B8
2 FastEthernet interfaces
1 Virtual Private Network (VPN) Module
DRAM configuration is 64 bits wide with parity disabled.
191K bytes of NVRAM.
31360K bytes of ATA CompactFlash (Read/Write)
Configuration register is 0x2102
XXXXX#
Thanks.
Munawar
Internet Protocol Security
Last Comment
John Meggers