Tim's Technology Journey Wiki

User Tools

Site Tools

Trace:
cisco:security:3

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision		Previous revision
cisco:security:3 [2025/11/02 12:37] – [Verifications] Namecisco:security:3 [2025/11/02 12:44] (current) Name
Line 150: Line 150:
   Keepalive not set   Keepalive not set
   Tunnel linestate evaluation up   Tunnel linestate evaluation up
-  Tunnel source 192.168.2.1 (GigabitEthernet1), destination 192.168.2.2</code>\\ +  Tunnel source 192.168.2.1 (GigabitEthernet1), destination 192.168.2.2 
 +   
 +r1#ping 2.2.2.2 so lo0 
 +Type escape sequence to abort. 
 +Sending 5, 100-byte ICMP Echos to 2.2.2.2, timeout is 2 seconds: 
 +Packet sent with a source address of 1.1.1.1  
 +!!!!! 
 +Success rate is 100 percent (5/5), round-trip min/avg/max = 1/1/3 ms
  
 +r1#show crypto ikev2 sa
 + IPv4 Crypto IKEv2  SA 
 +
 +Tunnel-id Local                 Remote                fvrf/ivrf            Status 
 +1         192.168.2.1/500       192.168.2.2/500       none/none            READY  
 +      Encr: AES-CBC, keysize: 256, PRF: SHA512, Hash: SHA512, DH Grp:24, Auth sign: PSK, Auth verify: PSK
 +      Life/Active Time: 86400/39446 sec</code>\\ 
 +
 +{{:cisco:security:3:esp-lab-3.jpg?800|}}\\ 
 +
 +Here you can see the entire packet, including the original header, is encrypted.
  
  
cisco/security/3.1762087032.txt.gz · Last modified: by Name

Page Tools

Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki