Field
State
Encapsulation mode
Transform
AH protocol
ESP protocol
Integrity
Encryption
Related commands
ipsec transform-set
display ipsec tunnel
Use display ipsec tunnel to display information about IPsec tunnels.
Syntax
display ipsec tunnel { brief | count | tunnel-id tunnel-id }
Views
Any view
Predefined user roles
network-admin
network-operator
Parameters
brief: Displays brief information about IPsec tunnels.
count: Displays the number of IPsec tunnels.
tunnel-id tunnel-id: Specifies an IPsec tunnel by its ID. The value range is 0 to 4294967295.
Usage guidelines
IPsec is a Layer 3 VPN technology that transmits data in a secure channel established between two
endpoints (such as two security gateways). Such a secure channel is usually called an IPsec tunnel.
Examples
# Display brief information about all IPsec tunnels.
<Sysname> display ipsec tunnel brief
----------------------------------------------------------------------------
Tunn-id
----------------------------------------------------------------------------
0
1
Description
Whether the IPsec transform set is complete.
Encapsulation mode used by the IPsec transform set: transport or tunnel.
Security protocols used by the IPsec transform set: AH, ESP, or both. If both
protocols are configured, IPsec uses ESP before AH.
AH settings.
ESP settings.
Authentication algorithm used by the security protocol.
Encryption algorithm used by the security protocol.
Src Address
Dst Address
--
--
1.2.3.1
2.2.2.2
Inbound SPI
Outbound SPI
1000
2000
3000
4000
5000
6000
7000
8000
243
Status
active
active