VPN Tunnel will not complete

I am wondering if anyone else runs into issues like this.  Phase 1 at the remote site(Cisco 881 series router) will complete, but then comes back to the main firewall(clustered 5520s) and Phase 2 does not complete.  In the past I have rebooted our 5520 cluster and that seems to fix it everytime, but i have over 140 remote sites and when I do that, it usually takes a long time for all tunnels to rebuild.  Are there certain commands that can be used in CLI on the 5520 cluster that will clear any caching issues?
mikhallAsked:
Who is Participating?

Improve company productivity with a Business Account.Sign Up

x
 
CyberwrathConnect With a Mentor Commented:
You can clear an individual problematic tunnel as follows

ASA2-5520(config)# clear crypto isakmp sa ?

exec mode commands/options:
  Hostname or A.B.C.D     IP address
  Hostname or X:X:X:X::X  IPv6 address
  <cr>

Much cleaner than rebooting the cluster.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.