Cisco VPN :: ASA5540 Any Command To Check Tunnel Up-time
Mar 17, 2011I am using cisco ASA 5540, Is there any command to check the tunnel uptime?
View 2 Replies
ADVERTISEMENT
Cisco VPN :: ASA5500 / Command To Check Tunnel Up-time?
Jun 27, 2011I am using ASA5500 series box which has a site to site tunnel terminated on it.Is there any command by which we can check the up time of the tunnel.
ASA# sh isakmp sa
Active SA: 1 Rekey SA: 0 (A tunnel will report 1 Active and 1 Rekey SA during rekey)Total IKE SA: 1
1 IKE Peer: x.x.x.x Type : L2L Role : responder Rekey : no State : MM_ACTIVE
Cisco Firewall :: Command To Check IPSEC Tunnel On ASA 5520?
Jan 7, 2013Need to check how many tunnels IPSEC are running over ASA 5520.Tried commands which we use on Routers no luck?
View 6 Replies View RelatedCisco VPN :: How Many VPN Connections ASA5540 Can Provide At Same Time
Apr 15, 2013How many VPN connections the ASA5540 can provide at the same time?
View 2 Replies View RelatedCisco VPN :: ASA5540 / Disable IPSec VPN Tunnel
Mar 29, 2011I have running more the 30 VPN tunnels on my ASA5540 release 8.3(x).I want to disable one VPN tunnel(temporarily) without removing the configuration either Phase 1 or Phase 2.let me to know the command to disable IPSec VPN tunnel on CLI or ASDM.
View 1 Replies View RelatedCisco Firewall :: ASA5540 - Disabling Anti-Replay For Specific Tunnel
Sep 23, 2012We need Solution for disabling Anti-Replay on the Firewall for a specific tunnel. ASA 8.4(2) ) does not support disabling Anti-Replay on specific Ipsec tunnel , is it true , then if we want to disable Anti-replay , what we have to do in ASA5540 .
View 4 Replies View RelatedCisco Firewall :: Command To Check ASA 5520 Is Passing Traffic
May 14, 2012how can i check that ASA is passing traffic? Also what command we can use to make sure VPN is working fine.
View 2 Replies View RelatedCisco WAN :: Command To Check List Of Incoming Vlans On Catalyst 4640?
Oct 4, 2011is there a cisco command to check the list of incoming vlans on a catalyst 4640 or at least that will give you the same output?we're having an issue with an ethernet circuit, links are up but ping won't go through(no ACLs) and I want to see if the vlan tag from the the other side(side B) is properly reaching side A.
View 1 Replies View RelatedCisco VPN :: Check Right Time On VPN Client Session On ASA 5510?
Sep 11, 2011How can I check I have the right vpn time on a VPN client session on a asa 5510 , and how can I modify it to more time...
View 3 Replies View RelatedCisco Switching/Routing :: Command To Check Memory Slot In 3800 Routers?
Nov 13, 2011I remember there is one command which can tell you which memory slot has how much big memory in Cisco 2800 or 3800. But at this moment, I just couldn't recall this command. I checked "show diag" but didn't see any information about memory.
View 9 Replies View RelatedCisco Routers :: Rv082 - Can't Check Enable Vpn Tunnel
Sep 8, 2011According to the manual rv082, if you wan to use vpn.. check the enable
But I can't check enable botton... it's disable So i can't check
Find The Time To Check The Network Layout Attached In The PDF?
Nov 9, 2012Time to check the network layout attached in the PDF. This design is regarding a new redundant DC being built (hypothetically only) but I need to know if I've connected this in the right way/ if its possible with the equipment listed and how I've put them together. [CODE]
View 3 Replies View RelatedCisco Switching/Routing :: WS-C6513 Command To Check 6500 Switch Performance / Resource Usage
Apr 25, 2013I am on a call right now troubleshooting some latency issue. The CPU usage on the sup card is low. Don't see any drops or input errors. I am aware that the switch and its modules have capability limits. Is there command I can run which will tell me if any module is overloaded or if the fabric/backplane is over utilized?My chassis is WS-C6513 and sup card is WS-SUP720-3B.
View 3 Replies View RelatedCisco VPN :: 3000 Network Address Is Allowed Down Tunnel / Check Phase 2 IPSEC Proposal
Nov 4, 2012I need to check and possibly change which Network address is allowed down a tunnel and check our Phase 2 IPSEC proposal. How would I do this on a VPN3000?
View 3 Replies View RelatedCisco :: Interface Tunnel Command Does Not Exist?
Oct 21, 2012I am using ASA 5520 Image in GNS3, when i come in Configuration Mode and try to create Tunnel through command "interface Tunnel 0", but this command doesn't exist. I need this command to create Tunnel for GRE Lab.
View 2 Replies View RelatedCisco WAN :: Getting 1941 Tunnel Bandwidth Command?
May 13, 2011I have a Cisco 1941 router with the Security license running IOS c1900-universalk9-mz.SPA.151-4.M.bin. Is there a "tunnel bandwidth" command like with routers that have the Advanced IP Services license? My concern is being able to adjust the bandwidth to a value greater than 8 Mbps...
View 3 Replies View RelatedCisco :: Scheduler Max-task-time 5000 Command
Dec 10, 2011I was wondering what this command that appears in default configuration of cisco routers: scheduler max-task-time 5000.I did some research in forums but did not find anything apart from the "scheduler" command with other options.
View 2 Replies View RelatedServers :: Cannot Set Time Through Command - Getting Error Message?
May 22, 2011After setting thru set time command, error message is display on server 'synthetic time issued'.
View 2 Replies View RelatedCisco :: 3560 - Missing IPv6 Tunnel Command?
Sep 17, 2011I've finally got my 3560 switch IPv6 capable (IP Services IOS), but I've stumbled upon something strange: I can configure a tunnel interface, but I can't put the tunnel in ipv6ip mode. The command is missing. I can choose GRE, IP in IP, and a bunch of other things, but no ipv6ip. I'm a bit desperate here and probably I am going to have to live with it, but just in case? I need the IPv6 tunnel for an uplink to a tunnel broker which only supports this type of tunnel, and I'm surprised this is missing.
View 4 Replies View RelatedCisco VPN :: 3925 - LAN-LAN IPsec Tunnel Command Unavailable
Apr 14, 2011I'm looking to utilize one of my 3925's to create a LAN-LAN IPsec VPN tunnel with another site.
I was under the impression that I needed to get a securityk9 license installed and then I would be good to go. I got a temporary 60 day trial license and successfully installed it, but none of the commands that I need to create the tunnel are showing up for me.
I'm trying to use the "crypto isakmp" command, but that is not showing up: Router(config)#crypto ? ca Certification authority key Long term key operations pki Public Key components
Here's my show license:
Index 2 Feature: securityk9
Period left: 633 weeks 4 days
Period Used: 0 minute 0 second
License Type: Evaluation
License State: Active, Not in Use, EULA accepted
License Count: Non-Counted
License Priority: Low
Cisco WAN :: 3845 Remove Tunnel Mode RBSCP Command
Sep 19, 2011I am trying to implement RBSCP on two 3845s running 15.1(4)M1 Adv Enterprise over a satellite link. The "show" commands all look correct, but whenever I policy route my machine through the RBSCP tunnel I dont even make it to the opposite side. However, if I remove the "tunnel mode RBSCP" command so it acts like a regular GRE tunnel, I route through it just fine. So I know its not a NAT, routing issue. [code]
View 1 Replies View RelatedCisco Switching/Routing :: 3845 - Archive Command Time-period Does Not Work
Oct 14, 2012I have a Cisco 3845 with the archive command configured:
archive
path tftp://x.x.x.x/$h
write-memory
time-period 60
The archive command works with the execution of the write mem, but with the "time-period" doesn't work.This is the show version of my 3845:
NTP_Server#SH VER
Cisco IOS Software, 3800 Software (C3845-SPSERVICESK9-M), Version 12.3(14)T7, RELEASE SOFTWARE (fc2)
Technical Support: [URL]
Copyright (c) 1986-2006 by Cisco Systems, Inc.
Compiled Thu 23-Mar-06 01:59 by pwade
[code].....
Cisco VPN :: Tunnel Gets Idle For Arbitrary Amount Of Time Rv110w
Oct 15, 2012I have set up 2 RV110w firewall/vpn/routers at remote locations and an ipsec tunnel between them. Once the tunnel gets established everything works fine until it has been idle for some arbitrary amount of time. (Maybe a half hour or less.) at which point we lose server access and can no longer ping across the tunnel. To fix this I have had to dissconnect and reopen the tunnel again, I even went so far as to install an autopinger on the remote end to keep traffic on the tunnel which seems to work but is not going to be a viable long term solution.
View 2 Replies View RelatedCisco WAN :: 2621 / Time-Based Access Lists Using Time Ranges?
Jan 4, 2011I have one 2621 router i want to creat time base access list so that one of my subnet user(10.128.194.0 255.255.255.128) use only internet between 11am to 2pm.
View 15 Replies View RelatedCisco Wireless :: WAP321 Lost Time - Cannot Sync With Time Server
Jul 8, 2012I just bought a WAP321 Wireless AP. I wonder why it cannot sync with our time server automatically. Every time I reboot it, the system time become "Fri Dec 31 1999 12:00:00 UCT". I have to do the sync manually by clicking on the "Save" button under the menu Administration > Time Setting.
View 5 Replies View RelatedCisco WAN :: 1941 Router Frozen From Time To Time?
Jun 29, 2011Ciso 1941 router frozen once a day, sometimes after 2 to 7 days. When the router frozen, no internet connection and cannot login/ping ethernet ports. I can login to console port and copy the error messages below. Reload the router and it will return back to normal operation. Re-installed IOS but still the same.
IOS Version 15.1(2)T2,
Cisco CISCO1941/K9 (revision 1.0) with 487424K/36864K bytes of memory.
DRAM configuration is 64 bits wide with parity disabled.
255K bytes of non-volatile configuration memory.
250880K bytes of ATA System CompactFlash 0 (Read/Write)
[code]...
Linksys Wireless Router :: Wrt54g2 Wifi Stops Working From Time To Time
Oct 26, 2011I have WRT54G2 router. All settings are more-less default and the behavior is following.You start up the router. If you do not connect wireless device within 10 minutes, then you have to restart the router.You have assigned IP via wifi, and when you connect cable device to the router, the wifi PCs are disconnected.
View 3 Replies View RelatedLinksys Cable / DSL :: X2000 Current Time Will Not Stay Set To Time Zone
May 1, 2012I recently purchased a X2000 ADSL modem/router combination. For some reason the current time will not stay set to the time zone. Rebooting clears the discrepancy for a short time before it drops an hour exactly. I'm in the central time zone and the setting are correct on the basic setup.?
View 1 Replies View RelatedLinksys Cable / DSL :: Retrieving Up-time / DSL Connection Time Information From WAG320N
Jan 17, 2012Is the WAG320N iPv6 compatable ? ,or could it be with a firmware update ?.Is the X2000 in the same boat in iPv6 terms as th WAG320N ?.Is there a way of retrieving "UPTIME" / "DSL connection time" information from the WAG320N and also line attenuation stats etc.Wouldn't need the above but poor isp needs keeping an eye on.
View 3 Replies View RelatedCisco VPN :: Upgrade SSL License For ASA5540?
Apr 2, 2013I have ASA5540 with 1000 SSL-VPN License, then I would like upgrade from 1000 to 2000. Which part I have to add between
L-ASA-SSL-1000=
L-ASA-SSL-1K-2500=
ASA5500-SSL-1000=
Cisco VPN :: IPsec VPN Connection With ASA5540
Jul 11, 2011I meet a strange question about IPSec VPN between '' C3945 A---ASA5540 A----------Internet----------ASA5540 B---C3945 B "
I set ipsec vpn between ASA5540,and set Tunnel between C3945.the C3945 Configuration as follow:
C3945 A C3945 B
interface Tunnel10 interface Tunnel10
ip address 172.18.1.225 255.255.255.252 ip address 172.18.1.226 255.255.255.252
tunnel source 172.17.0.1 tunnel source 172.17.1.121
tunnel destination 172.17.1.121 tunnel destination 172.17.0.1
the strange issue is like that:
On C3945A : I can ping 172.17.1.121 with the source address 172.17.0.1,but can't ping 172.18.1.226
On C3945B : I can ping 172.17.0.1 with the source address 172.17.1.121,but can't ping 172.18.1.225
Cisco VPN :: Multiple Certificates On ASA5540?
Sep 4, 2012I have an ASA5540 running 8.4(3) which has CA and identity certificates from godaddy.com installed, identifying the ASA to VPN remote users (the are using the anyconnect client.) There is also a separate certificate server located on the inside LAN that is used for internal purposes. All client workstations have identity certs from this internal server.
We would like to be able to continue using the existing godaddy CA/identity certs to identify the ASA to the clients, but we'd like to use the internal CA server to identify the clients when they initiate the AnyConnect session to the ASA.
I have seen other postings that state you cannot have more than one vert on an interface, but this is a little different - only one cert needs to be used to identify the ASA. The other one is only to identify the users. The ASA did allow me to import the internal CA cert.
Cisco VPN :: Enable VPN-3DES-AES On ASA5540?
Nov 26, 2012I need to enable VPN-3DES-AES on an ASA5540. Show version provided this info below.
Licensed features for this platform:
Maximum Physical Interfaces : Unlimited
Maximum VLANs : 200
Inside Hosts : Unlimited
Failover : Active/Active
VPN-DES : Enabled
VPN-3DES-AES : Disabled
[Code]....
This platform has an ASA 5540 VPN Premium license.After doing some poking around I came across a link to request a free license but when the email came it warned that the requested license was lower than one currently assigned to the serial number provided. I do not have any of the old license information since this was set up years ago and was way before my time with the company. How to enable the feature as well as maintaining my vpn premium license features.