Crypto Show Commands
show crypto map
This command displays the crypto map configuration. IPSec crypto maps created with EZ‐IPSec
configuration are marked with an asterisk (*) in the leftmost column of the
proposals may not be used in other user‐defined IPSec policies. They are reserved for EZ‐IPSec.
Syntax
show crypto map [interface type | tag map-name]
type
map-name
Mode
EXEC or Global configuration:
Sample Output
XSR#show crypto map
Crypto Map Table
Name
ezipsec
test
IPSec Policy Rule Table
Name
*c03
*n03
test.10 110 llProcess
test.20 120 llProcess
EZ-IPSec Access Control List
Name Local Address
*c03
*n03
14-120 Configuring the VPN
Shows only the crypto map set applied to the specified interface
including: ATM, BRI, Dialer, Fast/GigabitEthernet, Multilink, or Serial.
Shows only the crypto map set with the specified map‐name.
Policy rule list
n03;c03
test.10;test.20
ACL
Disp
Mode
c03
Process
Tunnel SPD
n03
Process
Tunnel SPD
Trans
Tunnel SPD
10.120.122.17
172.16.19.0/24
XSR>
or
XSR(config)#
Bundle Gateway
141.154.196.87
141.154.196.87
SPD
0.0.0.0
1.1.2.1
Remote Address
0.0.0.0/0
0.0.0.0/0
show
Proposals
ez-esp-3des-sha-pfs
ez-esp-3des-md5-pfs
ez-esp-aes-sha-pfs
ez-esp-aes-md5-pfs
ez-esp-3des-sha-no-pfs
ez-esp-3des-md5-no-pfs
ez-esp-aes-sha-no-pfs
ez-esp-aes-md5-no-pfs
ez-esp-3des-sha-pfs
ez-esp-3des-md5-pfs
ez-esp-aes-sha-pfs
ez-esp-aes-md5-pfs
ez-esp-3des-sha-no-pfs
ez-esp-3des-md5-no-pfs
ez-esp-aes-sha-no-pfs
ez-esp-aes-md5-no-pfs
T/Med ah-sha
T/Med esp-3des-md5
Prot
Lport
ANY
0
ANY
0
output. These
Rport
0