Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2862
Views
4
Helpful
2
Replies

How to Kill a site-to-site or remote access VPN session in PIX

chuachenhui
Level 1
Level 1

‎05-04-2006 01:08 AM - edited ‎02-21-2020 12:52 AM

I been searching around the command to stop or terminate a tunnel instead of reload the unit. Anyone can advice me how to procees abt this?

Thank you very much.

0 Helpful
2 Replies 2

Fernando_Meza
Level 7
Level 7

‎05-04-2006 06:09 PM

Hi .. I hope it heps .. please rate if it does !!!

If the PIX Firewall is processing active IPSec traffic, we recommend that you only clear the portion of

the security association database that is affected by the changes to avoid causing active IPSec traffic to

temporarily fail.

The clear [crypto] ipsec sa command only clears IPSec security associations; to clear IKE security

associations, use the clear [crypto] isakmp sa command.

The following example clears (and reinitializes if appropriate) all IPSec security associations at the

PIX Firewall:

clear crypto ipsec sa

The following example clears (and reinitializes if appropriate) the inbound and outbound IPSec security

associations established along with the security association established for address 10.0.0.1 using the

AH protocol with the SPI of 256:

clear crypto ipsec sa entry 10.0.0.1 AH 256

chuachenhui
Level 1
Level 1
In response to Fernando_Meza

‎05-04-2006 10:04 PM

Thanks you for the advice. Got it now. Appreciate that.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card