03-21-2017 08:02 AM
Hello folks,
Can anyone tell me how can I make shure that a specific trafic is going to VPN Tunnel?
How can I monitor this trafic on ASDM or CLI?
I have a network that shoulb be pass though the VPN, but I'm not sure if is working.
Thanks
Marcio
03-21-2017 08:52 AM
In the ASDM go "Monitor" and then "VPN". If the encryption/decryption counters are increasing then traffic is flowing over that VPN connection.
03-21-2017 08:58 AM
Hello Philip,
I have many differents IP range that pass though the VPN, see only the encryption/decryption counters doesn´t show me if a specific range or IP is going to or not the VPN.
I need monitoring a specific IP or range.
03-21-2017 09:00 AM
I would use "Tools/Packet Tracer" and simulate the flow and see if it reports it is going via VPN.
03-21-2017 09:14 AM
From the cli, use the command:
show crypto ipsec sa
That will show you all the pairwise Security Associations (SAs) - i.e .source and destination subnets for each given site-site VPN.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
Log in to Community
