Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
959
Views
4
Helpful
4
Replies

VPN Down Syslog Message

jwalker
Level 3
Level 3

‎10-24-2006 07:32 AM - edited ‎02-21-2020 02:41 PM

Does anyone know the correct syslog messages that will let me know if my site-to-site VPN is down? Thanks.

Labels:
0 Helpful
4 Replies 4

jmia
Level 7
Level 7

‎10-24-2006 07:53 AM

Well don't have the exact syslog message BUT a quick way to find out if the tunnel is up or not is to issue:

sh isakmp sa - example below...

What you should be looking for is the state i.e. QM_IDLE anything apart from this will indicate a problem

with the tunnel setup.

dst src state pending created

QM_IDLE 0 1

The above is from a PIX.

Hope this helps and pls rate posts!!

0 Helpful

jwalker
Level 3
Level 3
In response to m.sir

‎10-24-2006 09:38 AM

I guess I should have specified.. This is a site-to-site VPN between a PIX 515E and an ASA 5520. The router commands don't really help. Any ideas on the ASA/PIX syslog message to look for downed VPN connections? Thanks.

0 Helpful

unicmd
Level 1
Level 1

‎10-24-2006 10:14 AM

hmmm ...

there are some messages that could be usefull

but dont know if there are the right one :

http://www.cisco.com/univercd/cc/td/doc/product/multisec/asa_sw/v_70/syslog/saslapa.htm

else try to kill your site-to-site vpn and see that the log says :-)

Martin

DK

Customers Also Viewed These Support Documents