HP VPN Firewall Appliances VPN Command Reference
71
Parameters
transform-set-name: Name of an IPsec transform set, a string of 1 to 32 characters. If you do not specify
an IPsec transform set, the command displays information about all IPsec transform sets.
|: Filters command output by specifying a regular expression. For more information about regular
expressions, see Getting Started Guide.
begin: Displays the first line that matches the specified regular expression and all lines that follow.
exclude: Displays all lines that do not match the specified regular expression.
include: Displays all lines that match the specified regular expression.
regular-expression: Specifies a regular expression, a case-sensitive string of 1 to 256 characters.
Usage guidelines
If you do not specify any parameters, the command displays information about all IPsec transform sets.
Examples
# Display information about all IPsec transform sets.
<Sysname> display ipsec transform-set
IPsec transform-set name: tran1
encapsulation mode: tunnel
ESN : disable
ESN scheme: NO
transform: esp-new
ESP protocol:
Integrity: md5-hmac-96
Encryption: des
IPsec transform-set name: tran2
encapsulation mode: transport
ESN : disable
ESN scheme: NO
transform: esp-new
ESP protocol:
Integrity: md5-hmac-96
Encryption: des
Table 19 Command output
Field Descri
p
tion
IPsec transform-set name Name of the IPsec transform set.
encapsulation mode Encapsulation mode used by the IPsec transform set, transport or tunnel.
ESN Whether the ESN function is enabled.
ESN scheme
• NO—Supports the ESN function.
• YES—Does not support the ESN function.
transform
Security protocols used by the IPsec transform set: AH, ESP, or both. If both
protocols are configured, IPsec uses ESP before AH.
AH protocol Authentication algorithm used by AH.
ESP protocol Authentication algorithm and encryption algorithm used by ESP.