HPE FlexFabric 7900 Series Security Command Reference page 193
Hide thumbs
Also See for FlexFabric 7900 Series:
- Layer 3 ip routing command reference (414 pages) ,
- Security configuration manual (323 pages) ,
- Configuration manual (211 pages)
Table of Contents
Advertisement
Tunnel ID: 1
Status: active
Perfect forward secrecy:
SA's SPI:
outbound:
6000
inbound:
5000
outbound:
8000
inbound:
7000
Tunnel:
local
address: 1.2.3.1
remote address: 2.2.2.2
Flow:
as defined in ACL3100
# Display information about IPsec tunnel 1.
<Sysname> display ipsec tunnel tunnel-id 1
Tunnel ID: 1
Status: active
Perfect forward secrecy:
SA's SPI:
outbound:
6000
inbound:
5000
outbound:
8000
inbound:
7000
Tunnel:
local
address: 1.2.3.1
remote address: 2.2.2.2
Flow:
as defined in ACL 3100
Table 30 Command output
Field
Tunnel ID
Status
Perfect Forward Secrecy
SA's SPI
Tunnel
local address
remote address
Flow
(0x00001770)
[AH]
(0x00001388)
[AH]
(0x00001f40)
[ESP]
(0x00001b58)
[ESP]
(0x00001770)
[AH]
(0x00001388)
[AH]
(0x00001f40)
[ESP]
(0x00001b58)
[ESP]
Description
IPsec ID, used to uniquely identify an IPsec tunnel.
IPsec tunnel status. Only active is available.
Perfect forward secrecy (PFS) used by the IPsec policy for negotiation:
•
768-bit Diffie-Hellman group (dh-group1)
•
1024-bit Diffie-Hellman group (dh-group2)
•
1536-bit Diffie-Hellman group (dh-group5)
•
2048-bit Diffie-Hellman group (dh-group14)
•
2048-bit and 256_bit subgroup Diffie-Hellman group (dh-group24)
SPIs of the inbound and outbound SAs.
Local and remote addresses of the IPsec tunnel.
Local end IP address of the IPsec tunnel.
Remote end IP address of the IPsec tunnel.
Information about the data flow protected by the IPsec tunnel, including
source IP address, destination IP address, source port, destination port
and protocol.
185
Advertisement
Table of Contents
