527
----------------------------------------------------------------------------
Tunn-id Src Address Dst Address Inbound SPI Outbound SPI Status
----------------------------------------------------------------------------
0 -- -- 1000 2000 Active
3000 4000
1 1.2.3.1 2.2.2.2 5000 6000 Active
7000 8000
Table 83 Command output
Src Address
Source IP address of the IPsec tunnel.
For IPsec SAs created by using IPsec profiles, this field displays two hyphens
(
--
).
Dst Address
Destination IP address of the IPsec tunnel.
For IPsec SAs created by using IPsec profiles, this field displays two hyphens
(
--
).
Inbound SPI
Valid SPI in the inbound direction of the IPsec tunnel.
If the tunnel uses two security protocols, two SPIs in the inbound direction are
displayed in two lines.
Outbound SPI
Valid SPI in the outbound direction of the IPsec tunnel.
If the tunnel uses two security protocols, two SPIs in the outbound direction are
displayed in two lines.
Status
Status of the IPsec SA:
Active
or
Standby
.
In a VSRP scenario, this field displays either
Active
or
Standby
.
In standalone mode, this field always displays
Active
.
# Display the number of IPsec tunnels.
<Sysname> display ipsec tunnel count
Total IPsec Tunnel Count: 2
# Display detailed information about all IPsec tunnels.
<Sysname> display ipsec tunnel
Tunnel ID: 0
Status: Active
Perfect Forward Secrecy:
Inside vpn-instance:
SA's SPI:
outbound: 2000 (0x000007d0) [AH]
inbound: 1000 (0x000003e8) [AH]
outbound: 4000 (0x00000fa0) [ESP]
inbound: 3000 (0x00000bb8) [ESP]
Tunnel:
local address:
remote address:
Flow:
Tunnel ID: 1
Status: Active
Perfect Forward Secrecy:
To Next Page
Loading...
Need help?
General
