Any other ideas? Kind of - Page 2

dsmigelski1 · ‎07-17-2014

Hello,

I'm new to cisco and need to have these changes made to the vpn tunnel. Can anyone help:

What command would one type to add these configs in. An existing VPN config exists and I am just making some mods:

Phase 1 (Isakmp)
IKE Mode: Main (not aggressive)
Authentication: Pre-Shared
Encryption: AES-192
Hash: SHA
DH: 2
Lifetime: 43200
Pre-shared Key: *******

Phase2 (IPSec)
protocol: esp
encryption: AES-256
authentication: SHA
Lifetime: 28800
PFS: Enabled, Group 2

Thanks,

Derek

Jouni Forss · ‎07-17-2014

Hi,

The above "packet-tracer" does match the L2L VPN configurations so you should be seeing something.

You might have to keep issuing the "packet-tracer" command and then quickly issuing the "show crypto isakmp sa" command after that. You should be seeing something atleast.

- Jouni

dsmigelski1 · ‎07-17-2014

still nothing.. Any other ideas? want to ssh in?

dsmigelski1 · ‎07-17-2014

Any other ideas? Kind of stuck. Happy to pay you if you can assist in getting this configured.

Derek

dsmigelski1 · ‎07-20-2014

I now see this:

ciscoasa(config)# show crypto isakmp sa

Active SA: 1
Rekey SA: 0 (A tunnel will report 1 Active and 1 Rekey SA during rekey)
Total IKE SA: 1

1   IKE Peer: 216.117.40.14
    Type    : L2L             Role    : initiator
    Rekey   : no              State   : MM_ACTIVE
ciscoasa(config)#

VPN Setting please help