Display Gdoi Ks Acl - HPE FlexNetwork HSR6800 Security Command Reference

ACL configured
Table 83 Command output
Field
Group Name
Group identity
Group members
Redundancy
Local role
Hello interval
Hello number
Retransmit interval
Retransmit attempts
Rekey transport type
IPsec sequence number
IPsec rekey lifetime
Profile name
ACL configured

display gdoi ks acl

Use display gdoi ks acl to display ACLs referenced by GDOI KS groups.
Syntax
display gdoi ks acl [ group group-name ]
Views
User view
Default command level
1: Monitor level
Parameters
group group-name: Specifies a GDOI KS group by its name, a case-sensitive string of 1 to 63
characters. If you do not specify this option, the command displays ACLs referenced by all GDOI KS
groups.
Examples
# Display ACLs referenced by the GDOI KS group abc.
: 3001
Description
Name of the GDOI KS group.
KS group identity, a number or an IPv4 address. If no identity is configured,
this field is blank.
Number of online GMs in the GDOI KS group.
Redundancy information for the GDOI KS group.
Role of the local KS in the redundancy:
•
Primary—Primary KS.
•
Secondary—Secondary KS.
•
Initial—In initializing state.
•
Electing—Electing the primary KS.
Redundancy hello packet sending interval, in seconds.
Number of consecutive failures in receiving redundancy hello packets from
the primary KS. If the number is reached, the secondary KS considers itself
disconnected from the primary KS.
Redundancy protocol packet retransmission interval, in seconds.
Number of redundancy protocol packet retransmissions.
Rekey transport type: Multicast or Unicast.
Sequence number of the IPsec policy.
IPsec SA lifetime. When the lifetime is about to expire, the KS sends rekey
messages to update the TEK.
Name of the IPsec profile referenced.
Name or number of the ACL referenced.
478