IPSEC Phase II
Crypto ipsec transform-set NAME transform-1 transform-2
There can only be 2 transforms, 1 ESP Encryption transform, and 1 ESP hashing transform.

Apply the crypto map using the crypto map <map-name> <interface-name> command

Dear All, We are running Gre Tunnel between Remote cisco 857 and Hub router and IPsec is running over it. IPsec VTI is used for Security purpose. Sometimes we had a problem that GRE tunnel seems dowen and IPSEC is not working. When we type Sh Crypto isakmp sa" we can see Ipsec status is QM IDLE but IPSEC is not working . When we reset the GRE Tunnel IPSEC start working. Tunnel is created over VSAT Network between Remote Router to HUB Router . We have given Priority for ESP and UDP 500 Traffic . So This Packets you can assume that it never queue in the network as QOS is applied. What COuld be the Issue for this ? This issue is happened for all Remotes.Please let me know a solutionShaji

Can you debug:

crypto isakmp
crypto ipsec sa

and paste in the results?