[ Contents] [ Prev] [ Next] [ Index] [ Report an Error]

show services ipsec-vpn ipsec statistics

Syntax

show services ipsec-vpn ipsec statistics
<brief | detail>
<remote-gw remote-peer-address>
<service-set service-set-name>

Release Information

Command introduced before JUNOS Release 7.4.

Description

(Adaptive services interface only) Display IPSec statistics for the specified service set. If no service set is specified, the statistics for all service sets are displayed.

Options

none — Display standard IPSec statistics for all service sets.

brief | detail — (Optional) Display the specified level of output.

remote-gw remote-peer-address(Optional) Display IPSec statistics for an individual IPSec tunnel and an individual remote host.

service-set service-set-name(Optional) Display information about a particular service set.

Required Privilege Level

view

List of Sample Output

show services ipsec-vpn ipsec statistics detail
show services ipsec-vpn ipsec statistics remote-gw

Output Fields

Table 244 lists the output fields for the show services ipsec-vpn ipsec statistics command. Output fields are listed in the approximate order in which they appear.

Table 244: show services ipsec-vpn ipsec statistics Output Fields

Field Name

Field Description

Level of Output

PIC

The physical interface on which the IPSec tunnel is configured.

All levels

Service set

Name of the service set for which the IPSec tunnel is defined.

All levels

Local gateway

Gateway address of the local system.

All levels

Remote gateway

Gateway address of the remote system.

All levels

Tunnel index

Numeric identifier of the specific IPSec tunnel for the security association.

All levels

ESP statistics

Encapsulation Security Payload (ESP) statistics:

  • Encrypted bytes—Total number of bytes encrypted by the local system across the IPSec tunnel.
  • Decrypted bytes—Total number of bytes decrypted by the local system across the IPSec tunnel.
  • Encrypted packets—Total number of packets encrypted by the local system across the IPSec tunnel.
  • Decrypted packets—Total number of packets decrypted by the local system across the IPSec tunnel

All levels

AH Statistics

Authentication Header statistics:

  • Input bytes—Total number of bytes received by the local system across the IPSec tunnel.
  • Output bytes—Total number of bytes transmitted by the local system across the IPSec tunnel.
  • Input packets—Total number of packets received by the local system across the IPSec tunnel.
  • Output packets—Total number of packets transmitted by the local system across the IPSec tunnel.

All levels

Errors
  • AH authentication failures—Total number of authentication header (AH) failures. An AH failure occurs when there is a mismatch of the authentication header in a packet transmitted across an IPSec tunnel.
  • Replay errors—Total number of replay errors. A replay error is generated when a duplicate packet is received within the replay window.
  • ESP authentication failures—Total number of Encapsulation Security Payload (ESP) failures. An ESP failure occurs when there is an authentication mismatch in ESP packets.
  • Decryption errors—Total number of decryption errors.
  • Bad headers—Total number of invalid headers detected.
  • Bad trailers—Total number of invalid trailers detected.

All levels

Sample Output

show services ipsec-vpn ipsec statistics detail

user@host> show services ipsec-vpn ipsec statistics detail 
PIC: sp-3/1/0, Service set: service-set-1
Local gateway: 21.21.1.1, Remote gateway: 21.21.2.1, Tunnel index: 1
ESP Statistics:
 Encrypted bytes:                0
 Decrypted bytes:                0
 Encrypted packets:              0
 Decrypted packets:              0
AH Statistics:
 Input bytes:                    0
 Output bytes:                   0
 Input packets:                  0
 Output packets:                 0
Errors:
 AH authentication failures: 0, Replay errors: 0
 ESP authentication failures: 0, Decryption errors: 0
 Bad headers: 0 Bad trailers: 0

show services ipsec-vpn ipsec statistics remote-gw

user@host> show services ipsec-vpn ipsec statistics remote-gw 22.22.2.1 
PIC: sp-3/1/0, Service set: service-set-2
Local gateway: 22.22.1.1, Remote gateway: 22.22.2.1, Tunnel index: 2
ESP Statistics:
 Encrypted bytes:                0
 Decrypted bytes:                0
 Encrypted packets:              0
 Decrypted packets:              0
AH Statistics:
 Input bytes:                    0
 Output bytes:                   0
 Input packets:                  0
 Output packets:                 0
Errors:
 AH authentication failures: 0, Replay errors: 0
 ESP authentication failures: 0, Decryption errors: 0
 Bad headers: 0 Bad trailers: 0
[ Contents] [ Prev] [ Next] [ Index] [ Report an Error]

[an error occurred while processing this directive]