Display the Internet Protocol Security (IPsec) information on an VLAN interface. The command only works on an interface where you enable IPv6. If you do not enable IPv6 on the interface, the command displays as an error to the user.
show ipsec interface
show ipsec interface vlan <1-4059>
Specifies the VLAN ID in the range of 1 to 4059. By default, VLAN IDs 1 to 4059 are configurable and the system reserves VLAN IDs 4060 to 4094 for internal use. On switches that support the vrf-scaling and spbm-config-mode boot configuration flags, if you enable these flags, the system also reserves VLAN IDs 3500 to 3998. VLAN ID 1 is the default VLAN and you cannot create or delete VLAN ID 1.
None
User EXEC
The show ipsec interface vlan command displays the following information:
|
Output field |
Description |
|---|---|
|
Vlan Interface |
Specifies the VLAN interface. |
|
Policy Name |
Specifies the IPsec policy that associates with the specific VLAN or VLANs. |
|
IPsec State |
Specifies whether the IPsec policy is enabled on the VLAN interface. |
|
Direction |
Specifies the policy direction. |