show security ipsec traffic-selector

Syntax

Description

Display information about the traffic selectors that have been negotiated between the initiator and responder.

Options

interface-name `interface-name`	Name of the secure tunnel logical interface.
`brief` \| `detail`	(Optional) Display the specified level of output. The default is `brief`.
destination-address `address`	(Optional) Destination IP address.
fpc `slot-number` pic `slot-number`	(Optional) Display information about existing traffic selectors on the specified Flexible PIC Concentrator (FPC) slot and PIC slot.
kmd-instance	(Optional) Display information about existing traffic selectors in the key management process (in this case, it is KMD) identified by FPC slot-number and PIC slot-number. This option is used to filter the output. `all`—All KMD instances running on the Services Processing Unit (SPU). `kmd-instance-name`—Name of the KMD instance running on the SPU.
pic `slot-number` fpc `slot-number`	(Optional) Display information about existing traffic selectors on the specified PIC slot and FPC slot.
source-address `address`	(Optional) Source IP address.

Required Privilege Level

view

Output Fields

Table 1 lists the output fields for the show security ipsec traffic-selector command. Output fields are listed in the approximate order in which they appear.

Table 1: show security ipsec traffic-selector Output Fields
Field Name	Field Description	Level of Output
Tunnel-id	Tunnel ID.	All levels
Interface	Secure tunnel (st0) interface for the traffic selector.	All levels
IKE-ID	Peer IKE ID for the negotiated traffic selector.	All levels
Source IP	Source IP address for the negotiated traffic selector.	All levels
Destination IP	Destination IP address for the negotiated traffic selector.	All levels

Sample Output

show security ipsec traffic-selector interface-name st0.1 detail

Release Information

Command introduced in Junos OS Release 12.3X48-D10.

ON THIS PAGE