Reference Guide
Brocade Fabric OS Command Reference 457
53-1004112-02
ipSecConfig
10.33.74.13[0] 10.33.69.132[0]
ah mode=transport spi=48095089(0x02dddf71) reqid=0(0x00000000)
A: hmac-md5 c84d27e5 960d116c bf7c0e4a b232c49e
seq=0x00000000 replay=32 flags=0x00000000 state=mature
created: Oct 15 23:34:55 2008 current: Oct 15 23:35:06 2008
diff: 11(s) hard: 2621440(s) soft: 2137448(s)
last: Oct 15 23:34:55 2008 hard: 0(s) soft: 0(s)
current: 540(bytes) hard: 0(bytes) soft: 0(bytes)
allocated: 5 hard: 0 soft: 0
sadb_seq=0 pid=10954 refcnt=0
To display a specified IPSec SA:
switch:admin> ipsecconfig --show policy ips \
sa -t sa-esp-1
sa-esp-1 ipsec-protocol:esp
encryption algorithm: aes128_cbc 3des_cbc
authentication algorithm: hmac_sha1 hmac_md5
To display all IPSec SA proposals:
switch:admin> ipsecconfig --show policy ips \
sa-proposal -a
ipsec-esp-a-b SA(s) used:sa-esp-1 sa-ah-1
lifetime in seconds:infinite
lifetime in bytes:infinite
ipsec-esp-def SA(s) used:sa-esp-1
lifetime in seconds:infinite
lifetime in bytes:infinite
To display all IPSec transforms:
switch:admin> ipsecconfig --show policy ips transform -a
policy-A-B action:auto_ipsec mode:transport
local:10.33.69.132 remote:10.33.74.13
sa-proposal:ipsec-esp-a-b
ike-policy:remote-B
To display all IPSec traffic selectors:
switch:admin> ipsecconfig --show policy ips selector -a
slt-A-B-any local:10.33.69.132 remote:10.33.74.13
direction:outbound upper-layer-protocol:any
transform-used:policy-A-B
slt-B-A-any local:10.33.74.13 remote:10.33.69.132
direction:inbound upper-layer-protocol:any
transform-used:policy-A-B
Using the help command
To use the --help command with arguments to display the syntax of specific types and subtypes:
switch:admin> ipsecconfig --help add policy ips selector
Usage: ipsecConfig --add policy ips selector ARGUMENTS
ARGUMENTS
-tag <name> selector name