11-12-2018 01:29 PM - edited 02-21-2020 09:30 PM
Does anyone recommend any troubleshooting steps for establishing a tunnel with a remote peer? I do not have admin control of the other side. I expect things to work but would like to see specifically how experienced admins are troubleshooting phase 1 & phase 2 connections?
Solved! Go to Solution.
11-12-2018 01:53 PM
in addition to previous cmds:
sh crypto isakmp sa detail
sh crypto ipsec sa peer peer-ip
sh vpn-sessiondb l2l
sh vpn-sessiondb l2l [filter name x.x.x.x]
clear crypto ikev1 sa peer peer-ip bounce tunnel phase 1
clear crypto ipsec sa peer peer-ip bounce tunnel for phase 2
debug crypto ikev1 130 | ipsec 130
regards, mk
11-12-2018 01:47 PM
11-12-2018 01:48 PM
good place to start with more explanations :
11-12-2018 01:53 PM
in addition to previous cmds:
sh crypto isakmp sa detail
sh crypto ipsec sa peer peer-ip
sh vpn-sessiondb l2l
sh vpn-sessiondb l2l [filter name x.x.x.x]
clear crypto ikev1 sa peer peer-ip bounce tunnel phase 1
clear crypto ipsec sa peer peer-ip bounce tunnel for phase 2
debug crypto ikev1 130 | ipsec 130
regards, mk
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: