when I run command "clear ipsec sa peer" on ASA , it refreshed a NAT table. - Cisco Community

445

Views

0

Helpful

2

Replies

Our device is ASA5515 firewall .

It worked well, but after I ran "clear ipsec sa peer xxxxxx" , we can't access 8.8.8.8 . after I deleted this site-site vpn , it still didn't work . then I deleted all site-site, then I rebooted the firewall , we can access 8.8.8.8.

Thanks,

Duncan

2 Replies 2

clear ipsec sa peer X.X.X.X <--- only clears the one tunnel.

Are you using the same tunnel to go to internet, yes you will see small ping loss 1 or 2 then you will re-establish the tunnel.

depends how you configured, what is other end ? is site to site VPN both Cisco ASA or any other vendor ?

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

no, it is different tunnel.

the other end is ASA as well.

Learn, share, save

Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.

New here? Get started with these tips. How to use Community New member guide

Log in to Community