Command Reference Guide
3Com Router 3000 Ethernet Family
Command Reference Guide
Chapter 6 IKE Configuration Commands
3Com Corporation
6-7
Table 6-2 Description on the fields of the display ike sa verbose command
Field Description
connection id Security tunnel ID
transmitting entity IKE negotiation initiator or responder
local ip IP address of the local SA peer
local id type ID type of the local SA peer
local id ID of the local SA peer
remote IP address of the remote SA peer
remote id type ID type of the remote SA peer
remote id ID of the remote SA peer
authentication-method
Authentication method used by the IKE
proposal
authentication-algorithm
Authentication algorithm used by the
IKE proposal
encryption-algorithm
Encryption algorithm used by the IKE
proposal
life duration(sec) Lifetime of the SA
remaining key duration(sec) Remaining lifetime of the SA
exchange-mode
IKE negotiation mode, master mode or
aggressive mode
diffie-hellman group
Diffie-Hellman group used by the IKE
proposal
nat traversal Supports NAT traversal
# View the security tunnels established by IKE.
[3Com] display ike sa
connection-id peer flag phase doi
----------------------------------------------------------
3 1.1.1.10 RD|ST 2 IPSEC
2 1.1.1.10 RD|ST 1 IPSEC
flag meaning
RD--READY ST--STAYALIVE RL--REPLACED FD--FADING TO--TIMEOUT
# View the security tunnels established by IKE.
[3Com] display ike sa
total phase-1 SAs: 2
connection-id peer flag phase doi
1 202.38.0.2 RD|ST 1 IPSEC