[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 393
  • Last Modified:

show crypto ipsec stat

Experts,

On the ASA firewall 9.0 platform, What is the command to clear the counters so that when I issue a "show crypto IPsec stat", it shows 0 for the statistics?
0
trojan81
Asked:
trojan81
  • 4
  • 2
2 Solutions
 
Pete LongConsultantCommented:
clear crypto sa counters


Pete
0
 
trojan81Author Commented:
Pete that command does not exist.
0
 
Pete LongConsultantCommented:
? Hang on........

What happens if you recycle the tunnel?

clear ipsec sa peer X.X.X.X

if you have multiple ISAKMP tunnels

clear crypto isakmp sa

PL
0
NFR key for Veeam Agent for Linux

Veeam is happy to provide a free NFR license for one year.  It allows for the non‑production use and valid for five workstations and two servers. Veeam Agent for Linux is a simple backup tool for your Linux installations, both on‑premises and in the public cloud.

 
Pete LongConsultantCommented:
In fact the latter is specified as the command to clear the ISAKMP database
http://www.cisco.com/c/en/us/td/docs/security/asa/asa80/command/reference/cmd_ref/s2.html#wp1342362
(I know that's v 8.0 but the commands are the same) I also know you are looking at IPSEC and not ISAKMP counters, but without phase 1 phase 2 would never establish.

Pete
0
 
trojan81Author Commented:
hi i'm not looking to bounce the tunnel. I just want to clear the counters.
0
 
Pete LongConsultantCommented:
The only way to do that it recycle the tunnel :(
0
 
db_prakashCommented:
"clear crypto ipsec sa counters" is the command to clear ipsec sa counters from asa version 8.4 onwards.
0

Featured Post

Nothing ever in the clear!

This technical paper will help you implement VMware’s VM encryption as well as implement Veeam encryption which together will achieve the nothing ever in the clear goal. If a bad guy steals VMs, backups or traffic they get nothing.

  • 4
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now