In today's article, I'm going to familiarize you about the Cisco Ios privileged Exec mode command named "clear crypto isakmp." Ccna's (like you) use this command to clear active Internet Key change (Ike) connections.
Below is the command's syntax:
Cisco Router
clear crypto isakmp [connection-id] [active | standby]
connection-id-This (optional) argument is the Id of the association that is to be cleared. If this argument is not used with the command, all existing connections will be cleared by default.
active-This (optional) keyword is used to only clear (remove) Ike safety associations (Sas) that are in the active state.
standby - And, this (optional) keyword is used to only clear Ike Sas that are in the standby (secondary) state. Remember, if the router is in standby mode, the router will immediately resynchronize the standby Sas; thus, it may appear as if the standby Sas were not cleared.
In the example below, all existing Ike connections are being cleared:
Router#clear crypto isakmp
Note: You can use the privileged Exec mode command named "show crypto isakmp sa" to display (view) current Ike Sas.
And, if you conclude to use the command, make sure your router(s) is running Cisco Ios 12.3(11)T or higher.
I hope this narrative was very informative and helped you fast understand the usage of clear crypto isakmp command. If you need to learn more; I recommend you visit my website, were you'll find the most recent data regarding the Cisco Ccna (640-553) safety exam techniques to help you make your day a minuscule brighter.
To your success,
Cisco Ccna (640-553) security Exam Training - Using the "Clear Crypto Isakmp" Command
No comments:
Post a Comment