|
below is the output of sh crypto ipsec sa .....
Crypto map tag: ABC, seq num: 1, local addr: X.X.X.X
access-list ABC-vpn extended permit ip 10.81.X.X 255.255.255.0 172.X.X.X 255.240.0.0
local ident (addr/mask/prot/port): (10.81.x.x/255.255.255.0/0/0)
remote ident (addr/mask/prot/port): (172.x.x.x/255.240.0.0/0/0)
current_peer: x.x.x.x
#pkts encaps: 67490, #pkts encrypt: 67532, #pkts digest: 67532
#pkts decaps: 68288, #pkts decrypt: 68288, #pkts verify: 68288
#pkts compressed: 0, #pkts decompressed: 0
#pkts not compressed: 67490, #pkts comp failed: 0, #pkts decomp failed: 0
#pre-frag successes: 42, #pre-frag failures: 0, #fragments created: 84
#PMTUs sent: 0, #PMTUs rcvd: 0, #decapsulated frgs needing reassembly: 99
#send errors: 0, #recv errors: 0
local crypto endpt.: x.x.x.x/0, remote crypto endpt.: x.x.x.x/0
path mtu 1500, ipsec overhead 74, media mtu 1500
current outbound spi: 105EA463
current inbound spi : FD3B37FC
inbound esp sas:
spi: 0xFD3B37FC (4248516604)
transform: esp-aes esp-sha-hmac no compression
in use settings ={L2L, Tunnel, PFS Group 2, }
slot: 0, conn_id: 466944, crypto-map: ABC
sa timing: remaining key lifetime (sec): 3404
IV size: 16 bytes
replay detection support: Y
Anti replay bitmap:
0xFFFFFFFF 0xFFFFFFFF
outbound esp sas:
spi: 0x105EA463 (274637923)
transform: esp-aes esp-sha-hmac no compression
in use settings ={L2L, Tunnel, PFS Group 2, }
slot: 0, conn_id: 466944, crypto-map: ABC
sa timing: remaining key lifetime (sec): 3403
IV size: 16 bytes
replay detection support: Y
Anti replay bitmap:
0x00000000 0x00000001
|
Register
Search 
Login
