Router1# show crypto ipsec policy all, Policy peer match proto transform, D 10.0.2.0/24/any – Foundry Networks AR3202-CL User Manual
Page 231: Router1# show crypto ipsec policy all detail, Peer address is 172.16.0.2, action is apply, Key management is automatic, Pfs group is disabled, Match address, Protocol is any, Proposal of priority 1
Foundry AR-Series Router User Guide
15 - 6
© 2004 Foundry Networks, Inc.
June 2004
Step 9: Display the IPSec policies:
Step 10: Display IPSec policies in detail:
Router1# show crypto ipsec policy all
Policy Peer Match Proto Transform
------ ---- ----- ----- ---------
Router2 172.16.0.2 S 172.16.0.1/32/any Any P1 esp-aes-
sha1-tunl
D 10.0.2.0/24/any
INRouter2 172.16.0.2 S 10.0.2.0/24/any Any P1 esp-aes-
Router1# show crypto ipsec policy all detail
Policy name Router2 is enabled, Direction is outbound
Peer Address is 172.16.0.2, Action is Apply
Key Management is Automatic
PFS Group is disabled
Match Address:
Protocol is Any
Source ip address (ip/mask/port): (172.16.0.1/255.255.255.255/
any)
Destination ip address (ip/mask/port): (10.0.2.0/
255.255.255.0/any)
Proposal of priority 1
Protocol: esp
Mode: tunnel
Encryption Algorithm: aes128(key length=128 bits)
Hash Algorithm: sha1
Lifetime in seconds: 3600
Lifetime in Kilobytes: 4608000
Policy name INRouter2 is enabled, Direction is inbound
Peer Address is 172.16.0.2, Action is Apply
Key Management is Automatic
PFS Group is disabled
Match Address:
Protocol is Any
Source ip address (ip/mask/port): (10.0.2.0/255.255.255.0/any)
Destination ip address (ip/mask/port): (172.16.0.1/
255.255.255.255/any)
Proposal of priority 1
Protocol: esp
Mode: tunnel
Encryption Algorithm: aes128(key length=128 bits)
Hash Algorithm: sha1
Lifetime in seconds: 3600
Lifetime in Kilobytes: 4608000