Show ipsec – Allied Telesis RAPIER I User Manual

178

Enhancements to IPsec/VPN

Release Note

Software Version 2.8.1
C613-10477-00 REV B

show ipsec

SHow IPSec

Figure 55: Example output from the show ipsec command

RETRYIKEattempts

The number of consecutive attempts ISAKMP makes to establish a
connection. This parameter should only be used for permanent VPNs.
If an ISAKMP exchange fails, then ISAKMP will attempt the key
exchange again. If a phase 2 exchange fails, the exchange is
attempted over new ISAKMP SAs.

Default: 0

0

No retry attempts occur.

1..16

The specified number of retry attempts occur.

CONTinuous

Retry attempts occur continuously until either the
connection is established, or 24 hours has passed.
After the first 16 attempts, a five minute delay
occurs between attempts.

IPSEC Module Configuration

Module Status .......................... ENABLED

IPsec over UDP

Status .............................. OPEN

Listen Port ......................... 2746

VPNs

Maximum .............................. 1

Current .............................. 0

Peak ................................. 0

Table 46: New parameters in output of the show ipsec command

Parameter

Meaning

VPNs

Information about Virtual Private Network (VPN) tunnels.

Maximum

The maximum number of concurrent VPN tunnels permitted. Displays
only if VPN tunnels on your router or switch are limited by licencing.
You can increase this number with a special feature licence—contact
your authorised distributor or reseller.

Current

The number of VPN tunnels currently active.

Peak

The highest number of VPN tunnels active at any one time since the
router or switch started.

Parameter

Description