Display Ipsec Statistics - HP MSR Series Command Reference Manual
Hide thumbs
Also See for MSR Series:
- Configuration manual (889 pages) ,
- Command reference manual (625 pages) ,
- Wan access configuration manual (293 pages)
Table of Contents
Advertisement
Field
Perfect Forward Secrecy
Path MTU
Tunnel
local address
remote address
Flow
sour addr
dest addr
port
protocol
SPI
Transform set
SA duration (kilobytes/sec)
SA remaining duration (kilobytes/sec)
Max received sequence-number
Max sent sequence-number
Anti-replay check enable
UDP encapsulation used for NAT traversal
Status
No duration limit for this SA
Related commands
ipsec sa global-duration
•
•
reset ipsec sa
display ipsec statistics
Use display ipsec statistics to display IPsec packet statistics.
Description
Perfect forward secrecy (PFS) used by the IPsec policy for
negotiation:
•
768-bit Diffie-Hellman group (dh-group1)
•
1024-bit Diffie-Hellman group (dh-group2)
•
1536-bit Diffie-Hellman group (dh-group5)
•
2048-bit Diffie-Hellman group (dh-group14)
•
2048-bit and 256_bit subgroup Diffie-Hellman group
(dh-group24)
Path MTU of the IPsec SA.
Local and remote addresses of the IPsec tunnel.
Local end IP address of the IPsec tunnel.
Remote end IP address of the IPsec tunnel.
Information about the data flow protected by the IPsec tunnel.
Source IP address of the data flow.
Destination IP address,
Port number.
Protocol type.
SPI of the IPsec SA.
Security protocol and algorithms used by the IPsec transform set.
IPsec SA lifetime, in kilobytes or seconds.
Remaining IPsec SA lifetime, in kilobytes or seconds.
Max sequence number in the received packets.
Max sequence number in the sent packets.
Whether any-replay checking is enabled.
Whether NAT traversal is used by the IPsec SA.
IPsec SA stateful failover status: active or backup.
The manual IPsec SAs do not have lifetime.
309
Advertisement
Table of Contents
