Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
ON THIS PAGE
 

show services ssl termination profile

Syntax

Description

Display the SSL termination profile details.

Note:

When the CLI is in logical system context mode and you enter an operational-mode command, the output of the command displays information related to the logical system only.

Options

pic-info fpc-slot slot number pic-slot slot-number

Display the information for the FPC in the specified slot.
all

Display all SSL termination profiles configured on the device.
brief

Display brief information about SSL termination profile.
detail

Display detail information about SSL termination profiles.

Required Privilege Level

view

Output Fields

Table 1 lists the output fields for the show services ssl termination profile command. Output fields are listed in the approximate order in which they appear.

Table 1: show show services ssl termination profile Output Fields

Field Name

Field Description

Output Levels

Profile

SSL termination profile name.

detail

allow non-ssl session

Allow or not allow (bypass) non-SSL sessions.

brief, detail

preferred-ciphers

SSL cipher that can be used with acceptable key strength. Possible values are strong, medium, weak, and custom.

brief, detail

Num of url categories configured

URL categories exempted from SSL proxy.

brief, detail

Number of whitelist entries

Allowlisted sessions bypassing SSL proxy processing.

brief

Protocol-version

SSL protocol version. Possible values are all, TLS version 1.0, TLS version 1.1, and TLS version 1.2.

detail

Client authentication

Status of client certificate verification process.

detail

Server Authentication

Status of server certificate verification process.

detail

Crypto-mode

Crypto mode used. Options are synchronous-hardware or software or asynchronous-hardware.

detail

Session Resumption

SSL session resumption status.

detail

CRL check

Status of the CRL checking of certificate validity.

detail

Certificate

Types of certificates used.

detail

Renegotiation

Renegotiation option. Possible values are allow, allow secure, and drop.

detail

Custom ciphers

Custom ciphers configured.

detail

Server Cert

Server certificate configured.

detail

Custom ciphers

Custom ciphers configured.

detail

Server Cert

Server certificate configured.

detail

Decrypt Mirror

Status of decrypt mirroring functionality.

detail

Trusted CA:

Trusted CA configured for a profile

detail

Counters

Details of the counters generated in the session

detail

handshakes started

Number of SSL handshakes started.

detail

handshakes completed

Number of SSL handshakes completed successfully.

detail

active sessions

Number of active SSL sessions

detail

total handshake errors

Number of errors occurred during handshake process.

detail

Data Errors

Cumulative errors in a single counter. Any errors related to data such as read or write errors.

detail

session resumption

Number of SSL session resumption count.

detail

secure renegotiation

Secure sessions allowed after renegotiation.

detail

insecure renegotiation

All sessions allowed after renegotiation.

detail

multiple renegotiation

Sessions with multiple renegotiation.

detail

reneg after resumption

Sessions undergoing renegotiation after resumption.

detail

no_reneg alert by peer

Number of times no renegotiation alerts received from peer.

detail

drop on reneg

Sessions dropped after renegotiation.

detail

Sample Output

show services ssl termination profile all

show services ssl termination profile brief profile-name

show services ssl termination profile detail profile-name

Release Information

Command introduced in Junos OS Release 19.3R1.

Related Documentation