Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
619
Views
0
Helpful
1
Replies

How to re-establish tunnel with LAN to LAN VPN

jeff.vargas
Level 1
Level 1

‎09-12-2007 07:01 AM - edited ‎02-21-2020 01:40 AM

I've got a site that drops off and no longer sends VPN traffic. When I use the "sh crypto ipsec sa" command I see no "PKTS ENCAP" or no "PKTS encrypt". If I reboot the router everything starts working again. Is there a way to reset the tunnels using the command line so I don't have to reboot the router?

0 Helpful
1 Reply 1

a.alekseev
Level 7
Level 7

‎09-12-2007 07:13 AM

you can try enable "crypto isakmp keepalive 20"

also "crypto isakmp invalid-spi-recovery"

http://cisco.com/en/US/products/sw/iosswrel/ps5207/products_feature_guide09186a00801a7a76.html

If you want to reset VPN connection you can use

on routers

clear crypto sa

on PIX/ASA

clear crypto isakmp sa

clear crypto ipsec sa

Do not miss "sa" on PIX/ASA!!!

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card