Command Reference Guide
86 ● display ike sa 3Com Router 5000 Family and Router 6000 Family
Command Reference
display ike sa
Purpose Use the display ike sa command to view the current security tunnels established
by IKE.
Syntax display ike sa [ verbose ]
Parameters verbose
Specifies to display detailed information.
Example View detailed information about the security tunnels established by IKE.
[3Com] display ike sa verbose
---------------------------------------------
connection id: 2
transmitting entity: initiator
---------------------------------------------
local ip: 1.1.1.11
local id type: IPV4_ADDR
local id: 1.1.1.11
remote ip: 1.1.1.10
remote id type: IPV4_ADDR
remote id: 1.1.1.10
authentication-method: PRE-SHARED-KEY
authentication-algorithm: HASH-SHA1
encryption-algorithm: DES-CBC
life duration(sec): 86400
remaining key duration(sec): 86391
exchange-mode: MAIN
diffie-hellman group: GROUP1
nat traversal: NO
Table 1 Description on the fields of the display ike sa verbose command
Field Description
connection id Security tunnel ID
transmitting entity IKE negotiation initiator or responder
local ip IP address of the local SA peer
local id type ID type of the local SA peer
local id ID of the local SA peer
remote IP address of the remote SA peer
remote id type ID type of the remote SA peer
remote id ID of the remote SA peer
authentication-method Authentication method used by the IKE
proposal
authentication-algorithm Authentication algorithm used by the IKE
proposal
encryption-algorithm Encryption algorithm used by the IKE proposal
life duration(sec) Lifetime of the SA