Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hello,
On Cisco platforms other than ASA, it is possible when using the 'show crypto ipsec sa peer x.x.x.x' command to see all encaps/decaps packet counters since the counters were last cleared, even for tunnels that are not currently active.
I had...
On some routers you see “(new)” which means that router supports the RFC 2918 version of route refresh. Some older IOS versions might show (“old & new”) which means they also support a version of route refresh that Cisco implemented before the RFC wa...
I know this is an old post, but I faced the exact same issue recently while staging for an install. When I had a 3 member stack in the lab, I hadn't enable any type of authentication on the console port, to allow ease of access. Once I deployed the...
Thank you Philip... I was afraid this would be the case
At any rate, I will do the periodic "show crypto IPsec sa" you suggested & try to nail it down best I can.
Thank you very much for your input!!!!
CM
Hi Philip, thank you for the response.
Yes, the syntax of the command is identical, but it's the output from the ASA that is different. On IOS devices, the output details every peer IP that is configured on the router... even if the tunnel is not in...
