R3303-HP HSR6800 Routers Security Command Reference
502
Profile name : profile-xyz2
ACL configured : 3001
Table 83 Command output
Field Descri
p
tion
Group Name Name of the GDOI KS group.
Group identity
KS group identity, a number or an IPv4 address. If no identity is configured, this
field is blank.
Group members Number of online GMs in the GDOI KS group.
Redundancy Redundancy information for the GDOI KS group.
Local role
Role of the local KS in the redundancy:
• Primary—Primary KS.
• Secondary—Secondary KS.
• Initial—In initializing state.
• Electing—Electing the primary KS.
Hello interval Redundancy hello packet sending interval, in seconds.
Hello number
Number of consecutive failures in receiving redundancy hello packets from the
primary KS. If the number is reached, the secondary KS considers itself
disconnected from the primary KS.
Retransmit interval Redundancy protocol packet retransmission interval, in seconds.
Retransmit attempts Number of redundancy protocol packet retransmissions.
Rekey transport type Rekey transport type: Multicast or Unicast.
IPsec sequence number Sequence number of the IPsec policy.
IPsec rekey lifetime
IPsec SA lifetime. When the lifetime is about to expire, the KS sends rekey
messages to update the TEK.
Profile name Name of the IPsec profile referenced.
ACL configured Name or number of the ACL referenced.
display gdoi ks acl
Use display gdoi ks acl to display ACLs referenced by GDOI KS groups.
Syntax
display gdoi ks acl [ group group-name ]
Views
User view
Default command level
1: Monitor level
Parameters
group group-name: Specifies a GDOI KS group by its name, a case-sensitive string of 1 to 63 characters.
If you do not specify this option, the command displays ACLs referenced by all GDOI KS groups.