HP-UX IPSec Version A.03.02.02 Administrator's Guide HP-UX 11i version 2 and HP-UX 11i version 3 (762800-001, April 2014)
• “Getting Interface Information” (page 121)
• “Getting Certificate Information” (page 121)
• “Viewing and Configuring Audit Information” (page 121)
• “Enabling and Disabling Tracing” (page 121)
Getting General Information
Table 9 Getting General Information
CommandTask
ipsec_admin -statusGet status of HP-UX IPSec components.
ipsec_report -allShow all active and configured IPsec policies, IKE
policies, cache entries, SAs, active IP interfaces,
bypass interfaces, and display current audit file.
Getting SA Information
Table 10 Getting SA Information
CommandTask
ipsec_report -sa ikeShow current IKE SAs.
ipsec_report -sa ipsecShow current IPsec SAs.
Getting Policy Information
Table 11 Getting Policy Information
CommandTask
ipsec_policyDetermine which IPsec policy matches a packet.
ipsec_config show hostShow host IPsec policies in the configuration
database.
ipsec_report -host
ipsec_report -host [active]
Show active host IPsec policies.
ipsec_report -host configuredShow configured host IPsec policies in the
configuration database.
ipsec_config show gatewayShow gateway IPsec policies in the configuration
database.
ipsec_report -gateway
ipsec_report -gateway [active]
Show active gateway IPsec policies.
ipsec_report -gateway configuredShow configured gateway IPsec policies in the
configuration.
ipsec_config show tunnelShow tunnel IPsec policies in the configuration
database.
ipsec_report -tunnel
Show all tunnel IPsec policies in the configuration.
ipsec_config show ikeShow IKE policies in the configuration database.
ipsec_report -ikev1Show IKE policies loaded by the IKE daemon.
ipsec_report -ikev2
ipsec_report -cacheShow current policy decisions cached by the kernel
policy engine.
120 Troubleshooting HP-UX IPSec