HP 6125XLG R2306-HP 6125XLG Blade Switch Security Command Reference - Page 242
display ipsec { ipv6-policy-template | policy-template
View all HP 6125XLG manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 242 highlights
Field The policy configuration is incomplete Description Security data flow Selector mode Local address Remote address Transform set IKE profile SA duration(time based) SA duration(traffic based) SA idle time AH string-key AH authentication hex key ESP string-key ESP encryption hex key ESP authentication hex key Description IPsec policy configuration incomplete. Possible causes include: • The ACL is not configured. • The IPsec transform set is not configured. • The ACL does not have any permit statements. • The IPsec transform set configuration is not complete. • The peer IP address of the IPsec tunnel is not specified. • The SPI and key of the IPsec SA do not match the IPsec policy. Description of the IPsec policy. ACL referenced by the IPsec policy. Data flow protection mode of the IPsec policy: • standard • aggregation • per-host Local end IP address of the IPsec tunnel (only available for the IPsec policy using IKE negotiation). Remote end IP address or host name of the IPsec tunnel. Transform set referenced by the IPsec policy. IKE peer referenced by the IPsec policy. Time-based IPsec SA lifetime, in seconds. Traffic-based IPsec SA lifetime, in kilobytes. Idle expiration time of the IPsec SA, in seconds. AH string key (****** is displayed if the key is configured). AH authentication hex key (****** is displayed if the key is configured). ESP string key (****** is displayed if the key is configured). ESP encryption hex key (****** is displayed if the key is configured). ESP authentication hex key (****** is displayed if the key is configured). Related commands ipsec { ipv6-policy | policy } (system view) display ipsec { ipv6-policy-template | policy-template } Use display ipsec { ipv6-policy-template | policy-template } to display information about IPsec policy templates. Syntax display ipsec { ipv6-policy-template | policy-template } [ template-name [ seq-number ] ] 233