Solved: Site to Site VPN Show Command

ThomasMull9000 · ‎02-21-2012

Hello Guys.

i have two connection VPN connection profiles .. and they are

- Conneciton profile name : 100.100.100.15

- Connection profile name : 200.200.200.17

so i want to see only one connection information , like ipsec , protectnetwork, ike . all informationi about that profile. i need a Show command how to get it please

thank you

Jason Gervia · ‎02-22-2012

You can try the following:

for IPSEC:

show vpn-sessiondb remote filter tunnel-group

and you can add detail to it as well to get a lot more information (including protected networks)

show vpn-sessiondb detail remote filter tunnel-group

to change it to Anyconnect change 'remote" to 'svc'.

-J

View solution in original post

Marvin Rhoads · ‎02-22-2012

There's no one show command for that, AFAIK.

When "reverse engineering" one I come upon, I usually start from the "bottom" of the config and work my way up, copying off the bits as I come upon them. That usually would include the tunnel group, crypto map (and the IKE proposals and transform it references), and the access-list referenced by the crypto map.

Jason Gervia · ‎02-22-2012