display ipsec proposal [ brief | name proposal-name ] ctrl-plane
display ipsec proposal [ brief | name proposal-name ] slot slot-id cpu cpu-id
| Parameter | Description | Value |
|---|---|---|
brief |
Displays brief information about the IPSec proposal. |
- |
name proposal-name |
Specifies the name of the proposal. |
The value is an existing IPSec proposal name. |
ctrl-plane |
Displays information about the IPSec profiles on the ctrl-plane. All models except USG6635E/6655E, USG6680E and USG6712E/6716E support this parameter. |
- |
slot slot-id |
Specify the slot ID. Only the USG6635E/6655E, USG6680E and USG6712E/6716E support this parameter. |
- |
cpu cpu-id |
Specify the CPU ID. Only the USG6635E/6655E, USG6680E and USG6712E/6716E support this parameter. |
- |
The output of the display ipsec proposal command is as follows:
If the name of the IPSec proposal is not specified, all proposals are displayed.
# Display detailed information about all IPSec proposals.
<sysname> display ipsec proposal ctrl-plane Number of proposals: 2 IPSec proposal name: 1 Encapsulation mode: Tunnel Transform : esp-new ESP protocol : Authentication SHA2-HMAC-256 Encryption AES-256 IPSec proposal name: 2 Encapsulation mode: Tunnel Transform : ah-esp-new AH protocol : Authentication SHA2-HMAC-256 ESP protocol : Authentication SHA2-HMAC-256 Encryption AES-256
# Display brief information about all IPSec proposals.
<sysname> display ipsec proposal brief ctrl-plane Current ipsec proposal number: 5 --------------------------------------------------------- Proposal Name Encapsulation mode Transform --------------------------------------------------------- 1 Tunnel esp-new 2 Tunnel ah-esp-new 3 Tunnel ah-esp-new 4 Tunnel esp-new prop1 Tunnel esp-new
Item
|
Description |
|---|---|
| Number of proposals/Current ipsec proposal number | Current total number of IPSec proposals. |
| IPSec proposal name/Proposal Name | Name of the IPSec proposal. To configure an IPSec proposal, run the ipsec proposal command. |
| Encapsulation mode | Encapsulation mode in the IPSec proposal, which can be transport or tunnel. To configure an encapsulation mode, run the encapsulation-mode command. |
| Transform | Security protocol in the IPSec proposal. The value can be:
To configure a security protocol, run the transform command.
|
| ESP protocol | Authentication and encryption algorithms used by ESP. To configure authentication and encryption algorithms, run the esp authentication-algorithm and esp encryption-algorithm commands. |