Buy or Renew
Buy or Renew
NEW! Stay up-to-date on Cisco Secure Access: Software Release Notes and Announcements
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
722
Views
4
Helpful
1
Replies

about GETVPN

Kiran Doijode
Level 1
Level 1

‎07-01-2010 10:17 PM - edited ‎02-21-2020 04:43 PM

Hi everyone,

How many SA's can a getvpn handle ?

Labels:
0 Helpful
1 Reply 1

Jason Gervia
Cisco Employee
Cisco Employee

‎07-02-2010 07:07 AM

Kiran,


This is platform specific.  The 'show cry eli' command should be able to tell you that information for your specific platform:

Example:

Hardware Encryption : ACTIVE
Number of hardware crypto engines = 1

CryptoEngine NETGX details: state = Active
Capability      : IPPCP, DES, 3DES, AES, IPv6, GDOI, FAILCLOSE

IPSec-Session :     0 active,  2400 max, 0 failed

Keep in mind that due to re-keying, you'll only be able to get about 1/2 your limit (because you will have both the old IPSEC SA and the new IPSEC SA for a short period of time, until the old SA expires).

--Jason

Customers Also Viewed These Support Documents