Test and Verify the IPSec Configuration of the Router
Test and verify IPSec

The following actions can be performed to test and verify that the VPN has been configured correctly :

  • Display the configured ISAKMP policies using the show crypto isakmp policy command.
  • Display the configured transform sets using the show crypto ipsec transform-set command.
  • Display the current state of the IPSec SAs with the show crypto ipsec sa command.
  • View the configured crypto maps with the show crypto map command.
  • Debug ISAKMP and IPSec traffic through the Cisco IOS with the debug crypto ipsec and debug crypto isakmp commands.