show crypto isakmp sa

Have a question or want to start a discussion? Post it! No Registration Necessary.  Now with pictures!



We have our Cisco router hosting VPN to 3 external facilities which use
Symantec VPM devices - every so often the connection drops . If I restet the
VPN on the cisco router all is well but when I do this I don't want to have
to clear isakmp sa which clears them all - I want to only clear crypto
isakmp (specific connection) only. I saw in some documentation that if you
do a show crypto isakmp sa it shows you the connection ID which I could use
to kill the connection on a ID by ID level. But on my PIX506E when I type in
show crypto isakmp sa I only get the dst,src,state,pending,created feilds
and no Conn-id feild. Is this not available on this router ? Any help would
be appreciated to help me kill only one connection and not all of them.




Site Timeline