How do I restart the isakmpd process?
Issue the command "show process monitor statistics"
check for the total restarts for this specific process. What does the restart knob indicate? Has this already been restarted by the inhouse process manager(Its called Nanny)?
To restart this you need to issue the command " process restart <name of the process>".
Could you share the output of the command " show log security 50 | include ike"
Also enable ike logging, I am only seeing Fpapps logs.
When the controller( MD ) is up and running with an established tunnel,
Check if the IPSEC map on the controller is showing the correct peer address.
To find the name ipsecmap just issue " show ip route ", the maps should be at the bottom of the route table.
To view the map, "show crypto-local ipsecmap <name of the map>"
check the output of the peer SA's, can be done using the command " show crypto isakmp peer <peer ID> ".
To Clean up the existing SA's use the command "crypto-local ipsec sa-cleanup" if you feel there are unwanted SA's.
--Give Kudos: found something helpful, important, or cool? Click Kudos Star in a post.
--Problem Solved? Click "Accepted Solution" in a post.