Perform this procedure to display the IPsec encryption statistics on the Fabric IPsec Gateway Virtual Machine (VM).
enable
virtual-service WORD<1-128> console
Note
Type CTRL+Y to exit the console.
Switch:1> enable
Switch:1# virtual-service figw console
Connected to domain figw
Escape character is ^Y
<cr>
FIGW> show ipsec-stats
src 192.0.2.30 dst 192.0.2.40
proto esp spi 0xc0c2d9cd(3233995213) reqid 1(0x00000001) mode tunnel
replay-window 32 seq 0x00000000 flag af-unspec (0x00100000)
aead rfc4106(gcm(aes)) 0xa9c1923a4b4c5618ea2f3596de821261218bdea2 (160 bits) 128
anti-replay context: seq 0x0, oseq 0x138, bitmap 0x00000000
lifetime config:
limit: soft (INF)(bytes), hard (INF)(bytes)
limit: soft (INF)(packets), hard (INF)(packets)
expire add: soft 3268(sec), hard 3600(sec)
expire use: soft 0(sec), hard 0(sec)
lifetime current:
475650(bytes), 312(packets)
add <<yyyy-mm-dd>> <<hh:mm:ss>> use <<yyyy-mm-dd>> <<hh:mm:ss>>
stats:
replay-window 0 replay 0 failed 0
src 192.0.2.40 dst 192.0.2.30
proto esp spi 0xc92b08e5(3375040741) reqid 1(0x00000001) mode tunnel
replay-window 32 seq 0x00000000 flag af-unspec (0x00100000)
aead rfc4106(gcm(aes)) 0x9ca3568095298cefaaa709b9b932eb5141bd252c (160 bits) 128
anti-replay context: seq 0x135, oseq 0x0, bitmap 0xffffffff
lifetime config:
limit: soft (INF)(bytes), hard (INF)(bytes)
limit: soft (INF)(packets), hard (INF)(packets)
expire add: soft 3341(sec), hard 3600(sec)
expire use: soft 0(sec), hard 0(sec)
lifetime current:
470953(bytes), 309(packets)
add <<yyyy-mm-dd>> <<hh:mm:ss>> use <<yyyy-mm-dd>> <<hh:mm:ss>>
stats:
replay-window 0 replay 0 failed 0