CISCO-ASA - IPsec Debug Commands: Difference between revisions

From IT-Arts.net
← Older edit
m Text replacement - "Category:Post-It" to "Category:Wiki"
m Text replacement - "Category:Wiki" to "Category:Wiki '''''[https://it-arts.net/index.php/Category:Wiki Return to Wiki Index]''''' "
 
Line 1: Line 1:
[[Category:Wiki]]
[[Category:Wiki]]
'''''[https://it-arts.net/index.php/Category:Wiki Return to Wiki Index]'''''




Latest revision as of 07:10, 17 January 2026


Return to Wiki Index



Show phase 1

All phase 1 : 

ASA# show crypto isakmp sa
ASA# sh crypto ikev1 sa

Or a specific phase 1 : 

ASA# show crypto isakmp sa detail | b <REMOTE-IP>


Check Phase 2 Tunnel

ASA# show crypto ipsec sa peer <REMOTE-IP>


Display The PSK

ASA# more system:running-config | b tunnel-group <REMOTE-IP>


Display Details

Uptime, and so on : 

ASA# sh vpn-sessiondb detail l2l | b <REMOTE-IP>


 Debug Mode

debug crypto isakmp
!
debug crypto ipsec
!


Test Traffic

ASA# packet-tracer input INTERFACE-NAME icmp 172.18.96.8 8 0 192.168.0.3 detailed
Retrieved from "https://it-arts.net/index.php?title=CISCO-ASA_-_IPsec_Debug_Commands&oldid=922"