we have two Cisco 3800 routers at two sites running GRE over IPsec. Almost every 23-24 hours, our trap collector would get two SNMP traps from both routers.

What are these? The tunnel is stable and how to stop them?

traps look like this:

Device: VPN1

Component:

Severity: Warning

Time: 2009/09/07 22:01:29.000

Message:

snmp trap ciscoMgmt.171.2.2

Event details:

ciscoMgmt = 2

ciscoMgmt.171.1.2.2.1.6.1.14.50.48.56.46.56.53.46.49.48.54.46.50.50.53.1.14.50.48.56.46.56.53.46.49.48.52.46.50.50.53.24 = PUja

ciscoMgmt.171.1.2.2.1.7.1.14.50.48.56.46.56.53.46.49.48.54.46.50.50.53.1.14.50.48.56.46.56.53.46.49.48.52.46.50.50.53.24 = PUha

ciscoMgmt.171.1.2.3.1.16.24 = 8640000

ciscoMgmt.171.1.4.2.1.1.2.24 = 2

monitor = localhost

oid = 1.3.6.1.4.1.9.9.171.1.4.2.1.1.2.24

Device: VPN1

Component:

Severity: Warning

Time: 2009/09/07 22:57:31.000

Message:

snmp trap ciscoMgmt.171.2.1

Event details:

ciscoMgmt = 86400

ciscoMgmt.171.1.2.2.1.6.1.15.50.48.56.46.48.56.53.46.49.48.54.46.50.50.53.1.15.50.48.56.46.48.56.53.46.49.48.52.46.50.50.53.25 = PUja

ciscoMgmt.171.1.2.2.1.7.1.15.50.48.56.46.48.56.53.46.49.48.54.46.50.50.53.1.15.50.48.56.46.48.56.53.46.49.48.52.46.50.50.53.25 = PUha

ciscoMgmt.171.1.2.3.1.15.25 = 86400

monitor = localhost

oid = 1.3.6.1.4.1.9.9.171.1.2.3.1.15.25

Each router has

snmp-server enable traps isakmp policy add

snmp-server enable traps isakmp policy delete

snmp-server enable traps isakmp tunnel start

snmp-server enable traps isakmp tunnel stop

snmp-server enable traps ipsec cryptomap add

snmp-server enable traps ipsec cryptomap delete

snmp-server enable traps ipsec cryptomap attach

snmp-server enable traps ipsec cryptomap detach

snmp-server enable traps ipsec tunnel start

snmp-server enable traps ipsec tunnel stop

snmp-server enable traps ipsec too-many-sas