5 viewing ipsec security associations, 5 viewing ipsec security associations -61 – Motorola Series Switch WS5100 User Manual

Switch Security

6-61

Crypto Map configuration. Also, adding new peers through the use of new sequence numbers and
reassigning the Crypto Map does not tear down existing connections.

6.8.5 Viewing IPSec Security Associations

Refer to the

IPSec SAs

tab to review the various security associations (SAs) between the local and remote

peers comprising an IPSec VPN connection. The IPSec SA tab also displays the authentication and encryption
schemes used between the VPN peers as well other device address information.

To display IPSec VPN security associations:

1. Select

Security

>

IPSec VPN

from the main menu tree.

2. Click the

IPSec SAs

tab.

3. Refer to the following security association data:

Index

Displays the numerical (if defined) for the security association. Use the index to differentiate
the index from others with similar configurations.

Local Peer

Displays the name of the local peer at the near side of the VPN connection.

Remote Peer

Displays the name of the remote peer at the far side of the VPN connection.

ESP SPI In

SPI specified in the Encapsulating Security Payload (ESP) inbound header.

ESP SPI Out

SPI specified in the Encapsulating Security Payload (ESP) outbound header.

AH SPI In

Displays the inbound Authentication Header (AH).

AH SPI Out

Displays the outbound Authentication Header (AH).

Cipher Algorithm

Displays the algorithm used with the ESP cipher.

MAC Algorithm

Displays the algorithm used with the security association.