Display IKE Policies

Use the following procedure to display the configured IKE policies.

Procedure

  1. Enter Privileged EXEC mode:

    enable

  2. Display all IKE policies:

    show ike policy

  3. Display a specific IKE policy:

    show ike policy WORD<1–32>

  4. Display a specific IKE policy at local address.

    show ike policy WORD<1–32> laddr WORD<1–256>

  5. Display a specific IKE policy at remote address.

    show ike policy WORD<1–32> laddr WORD<1–256> raddr WORD<1–256>

Example

Switch:1#show ike policy
==========================================================================================
                                   IKE Policy

==========================================================================================
Policy                Addr                                                       Profile   
 Name                 Type Local Address              Remote Address             Name      
------------------------------------------------------------------------------------------
iketest3              IPv4 192.168.152.104            192.168.149.207            test      
v1pol                 IPv4 192.168.152.104            192.168.152.152            ikepro    


==========================================================================================
                                   IKE Policy

==========================================================================================
Policy                Profile                                   Revocation-Check     peer-identity
 Name                 Version     Auth-Method    Pre-Shared Key       Method               name
-------------------------------------------------------------------------------------------
iketest3              2           digital-cert                        ocsp                  
v1pol                 1           digital-cert                        ocsp                  


==========================================================================================
                                   IKE Policy

==========================================================================================
Policy                DPD        Admin   Oper          Use IKE                  
 Name                 Timeout     State  State P2 PFS  DH Grp  DH Group IntfId  
------------------------------------------------------------------------------------------
iketest3              300        enable  up    disable enable  modp1024 3047    
v1pol                 300        enable  up    disable enable  modp1024 3047    

Variable Definition

The following table defines parameters for the show ike policy command.

Variable

Value

policy WORD<1–32>

Specifies the name of the policy to be displayed.

laddr WORD<1–256>

Specifies the local IPv4 or IPv6 address.

raddr WORD<1–256>

Specifies the remote IPv4 or IPv6 address.