display spd

Purpose

For Virtual Private Network (VPN) tunnels that have been configured, this displays both the IPSEC Security Policy Database (SPD) and Internet Key Exchange (IKE) table entries defined for VPN tunnels.

Required permissions

For Digi products with two or more users, set permissions to set permissions display=execute to use this command. See set permissions for details on setting user permissions for commands.

Syntax

display spd

Examples

#> display spd

 IPSEC SPD Table:

 Idx, Selector(local ip:port,remote ip:port, protocol),Inner policy, Outer policy,LEASTProtectRModePDHashRYEncRSTProtect Mode  Hash
  0 any, any, any                                   bypass
  1 192.0.0.0:0, 172.0.0.0:0, any                   esp     tunnl md5   3des
  2 192.0.0.0:0, 172.0.0.0:0, any                   esp     tunnl md5   3des
  3 any, 127.0.0.1:0, any                           bypass
  4 any, 192.168.0.0:0, any                         bypass
  5 any, 169.254.0.0:0, any                         bypass
  6 any, 166.130.103.197:0, any                     bypass


 IKE SPD Table:

 Source IP       Dest. IP        Hash  Enc   Auth    DH  Life(s)   Life(KB)
 166.130.103.197:71.216.228.97:0 md5   3des  psk     5   300       32768

See also

• display ikesa
• display ikespd
• display ipsecspd
• display sadb
• display vpn
• set vpn
• vpn