O'Reilly logo

Santos:CCNA Sec 210-260 OCG by Omar Santos, John Stuppi

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Troubleshooting IPsec Site-to-Site VPNs in Cisco IOS

When you implement a new VPN, there may be a problem or two. So, let’s walk through the verification of the tunnel, and if we discover it not working, I will show you some of my favorite commands to assist in the troubleshooting process.

Let’s first of all verify our configuration so that we can confirm that what we have running on the router is what we configured, starting with Example 7-4.

Example 7-4 Verifying the IPsec Configuration

! This verifies the IKEv1 Phase 1 policy or policies in place.   The lower! the number of the policy, the higher its priority.R1# show crypto isakmp policyGlobal IKEv1 policyProtection suite of priority 1        encryption algorithm:   AES ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required