Manualshelf

R3166-R3206-HP High-End Firewalls VPN Command Reference-6PW101

ManualsBrandsHP ManualsComputer AccessoriesHP 7100/7200 IPsec dl Module
41424344454647484950
44
Field Descri
p
tion
tunnel IPsec tunnel.
local address Local IP address of the IPsec tunnel.
remote address Remote IP address of the IPsec tunnel.
flow Data flow.
sour addr Source IP address of the data flow.
dest addr Destination IP address of the data flow.
port Port number.
protocol Protocol type.
inbound Information of the inbound SA.
spi Security parameter index.
proposal Security protocol and algorithms used by the IPsec proposal.
sa duration Lifetime of the IPsec SA.
sa remaining key duration Remaining lifetime of the SA.
max received sequence-number
Maximum sequence number of the received packets (relevant to the
anti-replay function provided by the security protocol).
udp encapsulation used for nat
traversal
Whether NAT traversal is enabled for the SA.
outbound Information of the outbound SA.
max sent sequence-number
Maximum sequence number of the sent packets (relevant to the
anti-replay function provided by the security protocol).
anti-replay check enable Whether IPsec anti-replay checking is enabled.
anti-replay window size Size of the anti-replay window.
status
Whether the SA is in the active or standby state.
This field is displayed only when IPsec stateful failover is enabled.
display ipsec statistics
Syntax
display ipsec statistics [ tunnel-id integer ]
View
Any view
Default level
1: Monitor level
Parameters
tunnel-id integer: Specifies an IPsec tunnel by its ID, which is in the range 1 to 2000000000.
Description
Use the display ipsec statistics command to display IPsec packet statistics.