Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

Silver

VPN Down Syslog Message

Does anyone know the correct syslog messages that will let me know if my site-to-site VPN is down? Thanks.

4 REPLIES
Gold

Re: VPN Down Syslog Message

Well don't have the exact syslog message BUT a quick way to find out if the tunnel is up or not is to issue:

sh isakmp sa - example below...

What you should be looking for is the state i.e. QM_IDLE anything apart from this will indicate a problem

with the tunnel setup.

dst src state pending created

QM_IDLE 0 1

The above is from a PIX.

Hope this helps and pls rate posts!!

Gold

Re: VPN Down Syslog Message

Silver

Re: VPN Down Syslog Message

I guess I should have specified.. This is a site-to-site VPN between a PIX 515E and an ASA 5520. The router commands don't really help. Any ideas on the ASA/PIX syslog message to look for downed VPN connections? Thanks.

New Member

Re: VPN Down Syslog Message

hmmm ...

there are some messages that could be usefull

but dont know if there are the right one :

http://www.cisco.com/univercd/cc/td/doc/product/multisec/asa_sw/v_70/syslog/saslapa.htm

else try to kill your site-to-site vpn and see that the log says :-)

Martin

DK

126
Views
4
Helpful
4
Replies