Display IPsec Encryption Statistics on Fabric IPsec Gateway VM

About this task

Perform this procedure to display the IPsec encryption statistics on the Fabric IPsec Gateway Virtual Machine (VM).

Procedure

  1. Enter Fabric IPsec Gateway Configuration mode:

    enable

    virtual-service WORD<1-128> console

    Note

    Note

    Type CTRL+Y to exit the console.

  2. Display IPsec encryption statistics:

    show ipsec-stats

Example

Displaying IPsec encryption statistics on Fabric IPsec Gateway VM:
Switch:1> enable
Switch:1# virtual-service figw console
Connected to domain figw
Escape character is ^Y

  <cr>
FIGW> show ipsec-stats
src 192.0.2.30 dst 192.0.2.40
        proto esp spi 0xc0c2d9cd(3233995213) reqid 1(0x00000001) mode tunnel
        replay-window 32 seq 0x00000000 flag af-unspec (0x00100000)
        aead rfc4106(gcm(aes)) 0xa9c1923a4b4c5618ea2f3596de821261218bdea2 (160 bits) 128
        anti-replay context: seq 0x0, oseq 0x138, bitmap 0x00000000
        lifetime config:
          limit: soft (INF)(bytes), hard (INF)(bytes)
          limit: soft (INF)(packets), hard (INF)(packets)
          expire add: soft 3268(sec), hard 3600(sec)
          expire use: soft 0(sec), hard 0(sec)
        lifetime current:
          475650(bytes), 312(packets)
          add <<yyyy-mm-dd>> <<hh:mm:ss>> use <<yyyy-mm-dd>> <<hh:mm:ss>>
        stats:
          replay-window 0 replay 0 failed 0
src 192.0.2.40 dst 192.0.2.30
        proto esp spi 0xc92b08e5(3375040741) reqid 1(0x00000001) mode tunnel
        replay-window 32 seq 0x00000000 flag af-unspec (0x00100000)
        aead rfc4106(gcm(aes)) 0x9ca3568095298cefaaa709b9b932eb5141bd252c (160 bits) 128
        anti-replay context: seq 0x135, oseq 0x0, bitmap 0xffffffff
        lifetime config:
          limit: soft (INF)(bytes), hard (INF)(bytes)
          limit: soft (INF)(packets), hard (INF)(packets)
          expire add: soft 3341(sec), hard 3600(sec)
          expire use: soft 0(sec), hard 0(sec)
        lifetime current:
          470953(bytes), 309(packets)
          add <<yyyy-mm-dd>> <<hh:mm:ss>> use <<yyyy-mm-dd>> <<hh:mm:ss>>
        stats:
          replay-window 0 replay 0 failed 0