07-17-2014 09:19 AM
Hello,
I'm new to cisco and need to have these changes made to the vpn tunnel. Can anyone help:
What command would one type to add these configs in. An existing VPN config exists and I am just making some mods:
Phase 1 (Isakmp)
IKE Mode: Main (not aggressive)
Authentication: Pre-Shared
Encryption: AES-192
Hash: SHA
DH: 2
Lifetime: 43200
Pre-shared Key: *******
Phase2 (IPSec)
protocol: esp
encryption: AES-256
authentication: SHA
Lifetime: 28800
PFS: Enabled, Group 2
Thanks,
Derek
07-17-2014 12:40 PM
Hi,
The above "packet-tracer" does match the L2L VPN configurations so you should be seeing something.
You might have to keep issuing the "packet-tracer" command and then quickly issuing the "show crypto isakmp sa" command after that. You should be seeing something atleast.
- Jouni
07-17-2014 12:50 PM
still nothing.. Any other ideas? want to ssh in?
07-17-2014 03:19 PM
Any other ideas? Kind of stuck. Happy to pay you if you can assist in getting this configured.
Derek
07-20-2014 11:06 AM
I now see this:
ciscoasa(config)# show crypto isakmp sa
Active SA: 1
Rekey SA: 0 (A tunnel will report 1 Active and 1 Rekey SA during rekey)
Total IKE SA: 1
1 IKE Peer: 216.117.40.14
Type : L2L Role : initiator
Rekey : no State : MM_ACTIVE
ciscoasa(config)#
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide