[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
?
Solved

Cisco ASA 5510 - recycling services

Posted on 2012-03-27
4
Medium Priority
?
366 Views
Last Modified: 2013-09-18
We have two Cisco ASA 5510's in different cities using site to site vpn, it seems like the connection times out or gets lost every couple of weeks, is there a way to recycle the site to site service or setup a job to recycle it daily or weekly? We had a similar problem with regular users vpn connection this morning, is there a way to recycle the vpn service? I basically want to find a way to refresh these connections without rebooting the ASA everytime one of these issues come up.

Thank You!!
0
Comment
Question by:paclaiborne
  • 3
4 Comments
 
LVL 57

Expert Comment

by:Pete Long
ID: 37772273
issue the following command

clear crypto isakmp sa

or if you know the IP of the other end and you have multiple tunnels i.e.  youdont want to restart them all

clear crypto isakmp sa 123.123.123.123

Or if your an ASDM junkie untick the enable ISAKMP on the outside Interface click apply, then retick and click apply
0
 
LVL 57

Expert Comment

by:Pete Long
ID: 37772421
oops to do one tunnel, clear the ipsec sa like so..............

clear ipsec sa peer 123.123.123.123

I feel an interesting web article coming on :)

Pete
0
 
LVL 57

Accepted Solution

by:
Pete Long earned 2000 total points
ID: 37772840
Here you go, I've written it up for you and that's me doing it :)

Cisco ASA 5500 - Reset / Recycle VPN Tunnels


Pete
0
 

Author Closing Comment

by:paclaiborne
ID: 39503841
Sorry we left this question open and never approved the answer.
0

Featured Post

Get Certified for a Job in Cybersecurity

Want an exciting career in an emerging field? Earn your MS in Cybersecurity and get certified in ethical hacking or computer forensic investigation. WGU’s MSCSIA degree program was designed to meet the most recent U.S. Department of Homeland Security (DHS) and NSA guidelines.  

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

OpenVPN is a great open source VPN server that is capable of providing quick and easy VPN access to your network on the cheap.  By default the software is configured to allow open access to your network.  But what if you want to restrict users to on…
There’s a movement in Information Technology (IT), and while it’s hard to define, it is gaining momentum. Some call it “stream-lined IT;” others call it “thin-model IT.”
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:   • Key questions to ask when considering a partnership to accelerate your business into the cloud • Pitfalls and mistakes other partners…
Suggested Courses
Course of the Month19 days, 16 hours left to enroll

873 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question