Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
363
Views
0
Helpful
1
Replies

Encrypted Tunnel Count by Platform

ahmed.gadi
Level 1
Level 1

‎12-14-2015 11:52 PM - edited ‎03-05-2019 02:56 AM

Dear All,

             I wanted to know the meaning of Encrypted Tunnel Count on Cisco 2911 ISR.

I have gone through this link click here, I found that Cisco 2911 has 225 cumulative encrypted tunnels.

If I need to increase the tunnel count to 2000 on my Cisco 2911, Do I have only one option to purchase VPN encryption module (ISM-VPN-29=) ?

!!!!

Thanks & Regards

Ahmed..

Labels:
0 Helpful
1 Reply 1

rvarelac
Level 7
Level 7

‎12-16-2015 05:49 PM

Hi Ahmed, 

According with the documentation:

For Issues Where the Maximum Tunnel CERM Limit is Reached

Collect this output periodically in order to help identify one of these three conditions:

The number of tunnels has exceeded the CERM limit.
There is a tunnel count leak (number of crypto tunnels as reported by crypto statistics exceeds the actual number of tunnels).
There is a CERM count leak (number of CERM tunnel count as reported by CERM statistics exceeds the actual number of tunnels).
Here are the commands to use:

show crypto eli detail
show crypto isa sa count
show crypto ipsec sa count
show platform cerm-information

Solution

The best solution for users with a permanent securityk9 license that encounter this issue is to purchase the HSEC-K9 license. For information on these licenses,ISR Licensing

So , if you install a HSEC-K9 license , you will increase the encrypt tunnel  value

Hope it helps

-Randy-

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card