*************
In order to have a better understanding of the issue kindly follow these steps.
~ Output of “show tech” command.
~ Is it crypto map or VTI ?
~ Does it happen frequently ? or sometimes ?
~ Logs at the time of the issue from the router.
~ Debugs also as the following:
For IKEV1:
debug crypto condition peer ipv4
debug crypto isakmp
debug crypto ipsec
debug crypto ipsec message
debug crypto ipsec states
debug crypto ipsec hw-request
For IKEV2:
debug crypto condition peer ipv4
debug crypto ikev2
debug crypto ikev2 error
debug crypto ikev2 internal
********
show sdwan bfd sessions
show plat hardware qfp active statistics drop
show plat hard qfp active feature ipsec datapath drops
show plat softwar punt-policer
show sdwan ipsec inbound-connections
show sdwan ipsec outbound-connections
show sdwan tunnel statistics ipsec
show sdwan bfd history
show sdwan bfd tloc-summary-list
show plat hard qfp active feature bfd data stat
show plat soft bfd f0 summar
show plat hard qfp active feature bfd datapath sdwan summary
show plat soft sdwan session
show platform hardware qfp active feature ipsec datapath spi
show crypto ipsec sa peer <peer_ip> platform
show crypto ipsec sa
show platform hardware qfp active feature ipsec datapath out-sa-hash
*********************************************************
configure rollback
sh certifi status- active info
token
vedege cloud activate <Serial number> <token>
sh controll connection
