Monitor IPsec VPN—Phase I
You are here: Monitor > IPsec VPN > Phase I.
Use this page to view information related to IKE security associations.
Table 1 describes the fields on the Phase I page.
Table 1: Fields on the Phase I Page
|IKE Security Associations|
Indicates the duration of time after which you want the data on the page to be refreshed.
Click the refresh icon at the top right corner to display the fresh content.
Clear IKE SA
Clears all the IKE SA numbers on the display.
Index number of an SA.
IP address of the destination peer with which the local peer communicates.
State of the IKE security associations:
Random number, called a cookie, which is sent to the remote node when the IKE negotiation is triggered.
Random number generated by the remote node and sent back to the initiator as a verification that the packets were received.
Note: A cookie is aimed at protecting the computing resources from attack without spending excessive CPU resources to determine the cookie’s authenticity.
Negotiation method agreed upon by the two IPsec endpoints, or peers, used to exchange information. Each exchange type determines the number of messages and the payload types that are contained in each message. The modes, or exchange types, are: