HP-UX IPSec Version A.03.02.02 Administrator's Guide HP-UX 11i version 2 and HP-UX 11i version 3 (762800-001, April 2014)
Getting Interface Information
Table 12 Getting Interface Information
CommandTask
ipsec_report -ipShow active IP (configured, UP or DOWN )
interfaces, and whether or not HP-UX IPSec is
enabled for each interface.
ipsec_report -bypassShow bypass list entries.
Getting Certificate Information
Table 13 Getting Certificate Information
CommandTask
ipsec_config show mycertShow the contents of the certificate for the local
system.
ipsec_config show cacertShow the subject name for the CA certificate files
stored in /var/adm/ipsec/certstore.
ipsec_config show cacertShow the issuer name for the CRL files stored in
/var/adm/ipsec/certstore.
Viewing and Configuring Audit Information
Table 14 Viewing and Configuring Audit Information
CommandTask
ipsec_report -audit audit_file
[-entity entity_name[entity_name
...]
Display contents of the audit file.
where entity_name is one of the following names:
ikmpd
ipsec_admin
ipsec_config
ipsec_policy
ipsec_report
secauditd
secpolicyd
ipsec_admin -statusGet the name of the current audit file.
ipsec_admin -auditlvl
[alert|error|warning|informative|debug]
Change the audit level.
ipsec_admin -audit audit_directoryChange the audit file directory.
ipsec_admin -m[axsize] max_audit_file_sizeChange the maximum audit file size (in kilobytes).
ipsec_config add startup argument_listConfigure audit parameters for startup time.
Enabling and Disabling Tracing
Table 15 Enabling and Disabling Tracing
CommandTask
ipsec_admin -traceon [tcp|udp|igmp|all]Enable level four data tracing.
ipsec_admin -traceoff [tcp|udp|igmp|all]Disable level four data tracing.
Troubleshooting Utilities Overview 121