Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
324
Views
0
Helpful
2
Replies

Ipsec

ntmanjunath
Level 1
Level 1

‎08-11-2008 12:14 AM - edited ‎03-06-2019 12:42 AM

What would be the problem the crypto session shows down.

But I can ping peer to peer.

AIRTEL-DELHI#sh crypto se

Crypto session current status

Interface: Serial0

Session status: DOWN

Peer: 172.26.8.10 port 500

IPSEC FLOW: permit ip 10.97.37.0/255.255.255.0 172.26.8.0/255.255.255.0

Active SAs: 0, origin: crypto map

Labels:
0 Helpful
2 Replies 2

nourelrayes
Level 1
Level 1

‎08-11-2008 03:21 AM

Please provide running-config

0 Helpful

Richard Burts
Hall of Fame
Hall of Fame

‎08-11-2008 03:24 AM

manjunatha

When you ping is the source address in 10.97.37.0 (the source addresses apparently selected in the access list that is part of the crypto map)?

Other than possible issues is the addressing there are several other things that might keep the session from coming active. These might include:

- possible mismatch of preshared keys.

- possible mismatch of ISAKMP parameters.

- possible mismatch of IPSec parameters.

- possible filtering of the ISAKMP or IPSec packets.

It might help us to find your problem if you would post the config.

HTH

Rick

HTH

Rick
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card