Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
536
Views
10
Helpful
5
Replies

ASA Tunnel Full information

Go to solution
NIKHIL M K
Level 1
Level 1

‎09-19-2022 04:30 AM

Hi Guys

 

I was trying to create a document with Peer IP, Crypto, Private IP, IKEV version and description, tunnel status. Is there anyway to get all there details?

Thank you

NiK

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Rob Ingram
VIP
VIP
In response to NIKHIL M K

‎09-20-2022 12:10 AM

@NIKHIL M K correct, that command will only show you the tunnels that are up. If you want information on all tunnels (up and down), you can gather crypto map configuration "show run crypto map" this will display the unique sequence number per peer tunnel. Each sequence number will have the ACL, IKE Transform Set, Peer IP information used for that tunnel. You may need to write a script.

View solution in original post

5 Replies 5

Go to solution
Rob Ingram
VIP
VIP

‎09-19-2022 04:34 AM - edited ‎09-19-2022 04:34 AM

@NIKHIL M K the command "show vpn-sessiondb detail l2l" should provide the information you require.

https://www.cisco.com/c/en/us/td/docs/security/asa/asa-cli-reference/S/asa-command-ref-S/m_show_u-show_z.html

 

Go to solution
NIKHIL M K
Level 1
Level 1
In response to Rob Ingram

‎09-19-2022 11:47 PM

Thank you.

That really helped to the details
"show vpn-sessiondb detail l2l" Is this only shows the tunnels those are currently up? Actually we have 500+ tunnels and would like to import all details to an excel and we can verify the details and delete the terminated clients VPN. 

0 Helpful

Go to solution
Rob Ingram
VIP
VIP
In response to NIKHIL M K

‎09-20-2022 12:10 AM

@NIKHIL M K correct, that command will only show you the tunnels that are up. If you want information on all tunnels (up and down), you can gather crypto map configuration "show run crypto map" this will display the unique sequence number per peer tunnel. Each sequence number will have the ACL, IKE Transform Set, Peer IP information used for that tunnel. You may need to write a script.

Go to solution
Alan Inman
Level 1
Level 1

‎09-19-2022 05:27 AM

@NIKHIL M K if you are looking for a template to make documentation I've attached one. If it doesn't open I can take a screenshot of it if that is what you are looking for. 

Preview file
22 KB
0 Helpful

Go to solution
NIKHIL M K
Level 1
Level 1

‎09-19-2022 11:49 PM

Thank you 

I have downloaded and am able to edit the same. I have exactly the same form with me, but yours is more detailed than the one I have with me so I have updated my document.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card