Version == Indicate the IKE version ( 1 or 2)
addr == the ike-gateway address for the vpn-tunnel peers (yours and his )
created == the total time of the phase1 being established, here it's 508k seconds and 18 re-keys ( if you do simple math of 18 x 28800 ) you will get a number close to the 508k seconds
The IKE and IPSEC SA is crucial for telling you if and how many are created. Here no IPSEC SA have ever been created.
Direction == is afield that provide details if you imitated or respond for the connection
status == the ike-lifetime counter and count down for the next rekey ( 28800-24466 )
proposal == the active proposal set,
lifetime/rekey == shows 28800/4033
DPD == counter for send and receive, if you repeat the command you can easily ascertain DPD-interval which in this case is 5secs.
NSE ( network security expert) and Route/Switching Engineer
kfelix -----a----t---- socpuppets ---dot---com
^ ^
=( @ @ )=
o
/ \
No comments:
Post a Comment