Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
744
Views
0
Helpful
2
Replies

query on 7100-vpn site-site

connect
Level 1
Level 1

‎07-23-2004 06:47 AM - edited ‎02-20-2020 11:31 PM

Hi,

We have a cisco 7100 series router with VPN capability running Version 12.2(13)T5.We have a number of site-site tunnels terminated on this.

We use the command ,

"show crypto isakmp sa" to check whether a particular tunnel is up or not.Sometimes we dont see an entry for any specific site-site tunnel using this command,but we could see the packets getting encrypted through this tunnel using the command,

"show crypto ipsec sa" and the connectivity is also fine.

Can anyone pls let me know why it is not showing the tunnel status even when the connectivity is ok and let me know the exact command to see whether a tunnel is up or down.

Thanks..

0 Helpful
2 Replies 2

drolemc
Level 6
Level 6

‎07-29-2004 06:06 AM

The best way to check if the tunnel is up is to use the trace command. Instead of giving you all the intermediate hops, you will be able to see only the first and last hop.

0 Helpful

spremkumar
Level 9
Level 9
In response to drolemc

‎08-04-2004 01:36 AM

Hi

I just got to c u r mail ,hope this command show crypto engine connections active helps a bit which will display the active connections details with encrypted/decrypted packet counters..

regs

prem

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card