Perform this procedure to display the IPsec encryption statistics on the Fabric IPsec Gateway Virtual Machine (VM).
enable
virtual-service WORD<1-128> console
Note
Type CTRL+Y to exit the console.
show ipsec-stats
Switch:1> enable Switch:1# virtual-service figw console Connected to domain figw Escape character is ^Y <cr> FIGW> show ipsec-stats src 192.0.2.30 dst 192.0.2.40 proto esp spi 0xc0c2d9cd(3233995213) reqid 1(0x00000001) mode tunnel replay-window 32 seq 0x00000000 flag af-unspec (0x00100000) aead rfc4106(gcm(aes)) 0xa9c1923a4b4c5618ea2f3596de821261218bdea2 (160 bits) 128 anti-replay context: seq 0x0, oseq 0x138, bitmap 0x00000000 lifetime config: limit: soft (INF)(bytes), hard (INF)(bytes) limit: soft (INF)(packets), hard (INF)(packets) expire add: soft 3268(sec), hard 3600(sec) expire use: soft 0(sec), hard 0(sec) lifetime current: 475650(bytes), 312(packets) add <<yyyy-mm-dd>> <<hh:mm:ss>> use <<yyyy-mm-dd>> <<hh:mm:ss>> stats: replay-window 0 replay 0 failed 0 src 192.0.2.40 dst 192.0.2.30 proto esp spi 0xc92b08e5(3375040741) reqid 1(0x00000001) mode tunnel replay-window 32 seq 0x00000000 flag af-unspec (0x00100000) aead rfc4106(gcm(aes)) 0x9ca3568095298cefaaa709b9b932eb5141bd252c (160 bits) 128 anti-replay context: seq 0x135, oseq 0x0, bitmap 0xffffffff lifetime config: limit: soft (INF)(bytes), hard (INF)(bytes) limit: soft (INF)(packets), hard (INF)(packets) expire add: soft 3341(sec), hard 3600(sec) expire use: soft 0(sec), hard 0(sec) lifetime current: 470953(bytes), 309(packets) add <<yyyy-mm-dd>> <<hh:mm:ss>> use <<yyyy-mm-dd>> <<hh:mm:ss>> stats: replay-window 0 replay 0 failed 0