Send documentation comments to mdsfeedback-doc@cisco.com
22-48
Cisco MDS 9000 Family Command Reference
OL-8413-07, Cisco MDS SAN-OS Release 3.x
Chapter 22 Show Commands
show crypto spd domain ipsec
show crypto spd domain ipsec
To display the security policy database (SPD), use the show crypto spd domain ipsec command.
show crypto spd domain ipsec [interface gigabitethernet slot/port [policy number]]
Syntax Description
Defaults Displays all SPD information.
Command Modes EXEC mode.
Command History
Usage Guidelines To use this command, IPsec must be enabled using the crypto ipsec enable command.
Examples The following example shows how to display the SPD.
switch# show crypto spd domain ipsec
Policy Database for interface: GigabitEthernet1/1, direction: Both
# 0: deny udp any port eq 500 any
# 1: deny udp any any port eq 500
# 2: permit ip any any
# 63: deny ip any any
Policy Database for interface: GigabitEthernet1/2, direction: Both
# 0: deny udp any port eq 500 any
# 1: deny udp any any port eq 500
# 3: permit ip 10.10.50.1 255.255.255.255 10.10.50.2 255.255.255.255
# 4: permit ip 10.10.51.1 255.255.255.255 10.10.51.2 255.255.255.255
# 63: deny ip any any
Related Commands
interface gigabitethernet slot/port Displays SPD information for a specific Gigabit Ethernet
interface.
policy number Specifies a SPD policy number.
Release Modification
2.0(x) This command was introduced.
Command Description
crypto ipsec enable Enables IPsec.
To Next Page
Loading...
Need help?
General
