Displaying IPsec security association information
Use the following procedure to display IPsec security association information.
Procedure
Example
Display information on IPsec security association policies:
Switch:1>enable
Switch:1#show ipsec sa all
=========================================================================
IPSEC Security Association Table
=========================================================================
sa-name: ospf1
key-Mode: manual
Encap protocol: ESP
SPI Value: 9
Encrypt Algorithm: 3dec-cbc
Encrypt-key: 52fb29f723b0800870dc83e3
Encrypt-key-Len: 24
Auth Algorithm: hmac-md5
Auth-key: 123456789abcdef0
Auth-key-Len: 16
Mode: transport
Lifetime-Sec: 1000
Lifetime-Byte: 20000
Switch:1#show ipsec sa name ospf1
=========================================================================
IPSEC Security Association Table
=========================================================================
sa-name: ospf1
key-Mode: manual
Encap protocol: ESP
SPI Value: 9
Encrypt Algorithm: 3dec-cbc
Encrypt-key: 52fb29f723b0800870dc83e3
Encrypt-key-Len: 24
Auth Algorithm: hmac-md5
Auth-key: 123456789abcdef0
Auth-key-Len: 16
Mode: transport
Lifetime-Sec: 1000
Lifetime-Byte: 20000
Switch:1#show ipsec sa-policy
=========================================================================
SA POLICY TABLE
=========================================================================
Policy Name Security Association
-------------------------------------------------------------------------
ospf1 ospf1
-------------------------------------------------------------------------
Variable Definitions
The following table defines parameters for the show ipsec sa command.
|
Variable |
Value |
|---|---|
|
all |
Displays all security associations. |
|
name WORD<1–32> |
Displays a specific security association based on name. |
Use the data in the following table to use the show ipsec command.
|
Variable |
Value |
|---|---|
|
sa-policy |
Displays all security associations linked to a specific policy. |