Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

kva
New Member

Managing a large number of SA's / peers on a PIX VPN

Hi.

Has anyone found a smart way to handle large number of SA's and peers on a PIX VPN installation?

Example: To check if a SA has been created you have to issue a "show crypto ipsec sa". This will list all SA's on all peers, in my case about 250 SA's on 80 peers. It is qquit difficult to locate the one peer and SA your are interessting in because each SA is approx. 30 lines. Is there any way to limit this query to a single peer og a single SA?

Keld

2 REPLIES
New Member

Re: Managing a large number of SA's / peers on a PIX VPN

you can do a individual address of the peer show crypto ipsec sa address

kva
New Member

Re: Managing a large number of SA's / peers on a PIX VPN

Hi Gary.

I am aware of this parameter on the "show crypto ipsec sa" statement, but it does not work!

I don't know if you have tried it, but the only thing it does is inserting a lot of empty lines in the output.

regards Keld

114
Views
0
Helpful
2
Replies
CreatePlease to create content