Jon Marshall Tue, 12/02/2008 - 14:03
User Badges:
  • Super Blue, 32500 points or more
  • Hall of Fame,

    Founding Member

  • Cisco Designated VIP,

    2017 LAN, WAN

Allen


Not sure what you mean. The "created" simply means that an ISAKMP SA has been setup between 2 IPSEC peers.


If i have misunderstood please let me know.


Jon

JORGE RODRIGUEZ Tue, 12/02/2008 - 14:04
User Badges:
  • Green, 3000 points or more

Allen,


The output of show cry isakmp sa simply tells you that an Ipsec tunnel has been successfully create between 172.72.72.238 as the source tunnel point and destination 192.168.1.5 tunnel end point.


Created 1 - means the isakmp SA was built successfuly.


QM_IDLE state means to me this tunnel is UP and the IKE SA key exchange was successfull, but is idle, it remains authenticated in a (QM) quiescent state but active.





Have a look at this two links to learn all about Ipsec and those commands

http://www.cisco.com/en/US/tech/tk583/tk372/technologies_tech_note09186a0080094203.shtml



http://www.cisco.com/en/US/docs/ios/security/command/reference/sec_s3.html#wp1116340



Opps !!! sorry Jon.. pressed entered key, but as usual we both agree :-)


Rgds

Jorge


Jon Marshall Tue, 12/02/2008 - 14:06
User Badges:
  • Super Blue, 32500 points or more
  • Hall of Fame,

    Founding Member

  • Cisco Designated VIP,

    2017 LAN, WAN

Jorge


Same as you said before. No need to apologize my friend. Besides your post was only a minute later than mine unlike last time where i was about 2 hours behind you :-)


Jon

Actions

This Discussion