MONITOR GETSPD

Level

vpn_read

History

Appears in 6 1 0
Format Appears in 9 0 0

Description

List IPsec SPD policy

Returns

src=<ip> : source IP address
srcname=<name> : Optionnal source object name
srcmask=<masklen> : the value of src mask len in bits
srcport=<port> : Optionnal source port
dst=<ip> : destination IP address
dstname=<name> : Optionnal destination object name
dstmask=<masklen> : the value of dst mask len in bits
dstport=<port> : Optionnal destination port
proto=<protocol> : Optionnal protocol name
dir=in|out
policy=none|ipsec
srcgw=<ip> : source Gateway IP
srcgwname=<name> : Optionnal source Gateway name
dstgw=<ip> : destination Gateway IP
dstgwname=<name> : Optionnal destination Gateway name
enc=esp|ah|ipcomp : Optionnal encapsulation mode
mode=tunnel|transport : Optionnal IPSec mode
level=use|require|unique : Optionnal policy level
reqid=<id> : Optionnal Reqid identifier (if level is "unique")
lifetime=<secs> : Optionnal current time count
bytes=<count> : Optionnal current byte count
maxlifetime=<secs> : Optionnal max time count
maxbytes=<count> : Optionnal max byte count

Format

section_line

Example

101 begin
src=127 0 0 0 srcmask=8 srcname=Network_loopback dst=127 0 0 0 dstmask=8 dstname=Network_loopback
dir=in policy=none spid=13 seq=3 pid=56555
src=192 168 1 0 srcmask=24 srcname=Net_peer dst=10 2 0 0 dstmask=16 dstname=network_in dir=in
policy=ipsec spid=16 seq=2 pid=56555 enc="esp" mode=tunnel srcgw=172 16 1 2 srcgwname=ipsec_peer
dstgw=172 16 11 2 dstgwname=Firewall_out level=unique reqid=16392
src=127 0 0 0 srcmask=8 srcname=Network_loopback dst=127 0 0 0 dstmask=8 dstname=Network_loopback
dir=out policy=none spid=14 seq=1 pid=56555
src=10 2 0 0 srcmask=16 srcname=network_in dst=192 168 1 0 dstmask=24 dstname=Net_peer dir=out
policy=ipsec spid=15 seq=0 pid=56555 enc="esp" mode=tunnel srcgw=192 16 11 2 srcgwname=Firewall_out
dstgw=172 16 1 2 dstgwname=ipsec_peer level=unique reqid=16391