It is difficult to test the exact problems of our encryption methods, especially since we are dealing with encrypted data. Pulling out a sniffer should tell us nothing because we should not be able to read the data.

If we can read the data then we know something is definitely wrong.

We can use our show crypto connections command to search for a positive connection ID. If it is positive, then the connection succeeded. We can also check for a positive connection ID with our show crypto map command. Of course, we must not forget to generate our keys or else no encryption will take place.