313
Syntax
display ipsec tunnel { brief | count | tunnel-id tunnel-id }
Views
Any view
Predefined user roles
network-admin
network-operator
Parameters
brief: Displays brief information about IPsec tunnels.
count: Displays the number of IPsec tunnels.
tunnel-id tunnel-id: Specifies an IPsec tunnel by its ID. The value range for the tunnel ID is 0 to
4294967295.
Usage guidelines
IPsec is a Layer 3 VPN technology that transmits data in a secure channel established between two
endpoints (such as two security gateways). Such a secure channel is usually called an IPsec tunnel.
Examples
# Display brief information about all IPsec tunnels.
<Sysname> display ipsec tunnel brief
----------------------------------------------------------------------------
Tunn-id Src Address Dst Address Inbound SPI Outbound SPI Status
----------------------------------------------------------------------------
0 -- -- 1000 2000 active
3000 4000
1 1.2.3.1 2.2.2.2 5000 6000 active
7000 8000
Table 43 Command output
Field Descri
tion
Src Address
Source IP address of the IPsec tunnel.
For IPsec SAs created by using IPsec profiles, this field displays two hyphens (--).
Dst Address
Destination IP address of the IPsec tunnel.
For IPsec SAs created by using IPsec profiles, this field displays two hyphens (--).
Inbound SPI
Valid SPI in the inbound direction of the IPsec tunnel.
If the tunnel uses two security protocols, two SPIs in the inbound direction are
displayed in two lines.
Outbound SPI
Valid SPI in the outbound direction of the IPsec tunnel.
If the tunnel uses two security protocols, two SPIs in the outbound direction are
displayed in two lines.
Status
Stateful failover status of the IPsec SA: active or backup.
In the current version, this field always displays active.
# Display the number of IPsec tunnels.
To Next Page
Loading...
Need help?
General
