| Index |
| A unique index for this entry. |
| State |
| This object specifies the state of the SA. Possible values: negotiating(1), -- the SA is still being negotiated established(2), -- the SA negotiation is finished waiting-for-remove(3), -- the SA is waiting for removal delete(7) -- mark the SA for deletion. |
| XchType |
| The exchange mode used to create the SA. Possible values: base(1), -- IKE base mode mode id-protect(2), -- IKE identity protection -- (oakley main mode) authentication-only(3), -- Authentication only mode aggressive(4), -- IKE (oakley) aggressive mode info(5), -- IKE informational exchange mode quick(32), -- IKE quick mode new-group(33), -- IKE new group mode any(256) -- Other mode. |
| AuthMethod |
| The authenticatin method used when negotiating this SA. Possible values: pre-sh-key(1), -- Authentication using pre shared keys dss-sig(2), -- Authentication using DSS signatures rsa-sig(3), -- Authentication using RSA signatures rsa-enc(4), -- Authentication using RSA encryption rsa-enc-rev(5) -- Authentication using revised RSA encryption. |
| Role |
| This object specifies by which side the SA negotiation was initiated. Possible values: initiator(1), -- this end initiated the SA negotiation responder(2) -- the remote end initiated the SA negotiation. |
| LocalId |
| The local ID used for authentication. |
| RemoteId |
| The remote ID used for authentication. |
| LocalIp |
| The local IP address used in the IKE communication. |
| RemoteIp |
| The remote IP address used in the IKE communication. |
| CookieI |
| The cookie of the initiator. |
| CookieR |
| The cookie of the responder. |
| NumCerts |
| The number of certificates received from the remote side when negotiating this SA. |
| NumNegotiations |
| This object specifies the number of currently active negotiations for this SA. |
| Bytes |
| Number of bytes transmitted using this SA. |
| MajVersion |
| The IKE major version number. |
| MinVersion |
| The IKE minor version number. |
| PeerIndex |
| The index of the peer for which this SA was created. |
| HeartbeatsEnabled |
| This object specifies whether heartbeats are sent/expected over this SA possible values: send(1), -- send heartbeats expect(2), -- expect heartbeats both(3), -- send and expect heartbeats none(4) -- neither send nor expect heartbeats. |
| HeartbeatsSent |
| Number of Heartbeats sent over this SA. |
| HeartbeatsReceived |
| Number of Heartbeats received over this SA. |
| Created |
| Time the SA was created. |
| LastUsed |
| Time the SA was used last. |
| EncAlg |
| The encryption algorithm used. |
| HashAlg |
| The hash algorithm used. |
| PrfAlg |
| The hash algorithm used for the pseudo random function. |
| Expires |
| Time the SA will expire. |
| LocalPort |
| Local port currently used for the SA. |
| RemotePort |
| Remote port currently used for the SA. |
| XauthType |
| This object displayes whether XAUTH is used or not after complete establishment of the SA. If XAUTH is used then the type of the extended authentication is displayed. |
| XauthUser |
| User name used for Extended Authentication. |
| Ip6LocalIp |
| The local IPv6 address used in the IKE communication. |
| Ip6RemoteIp |
| The remote IPv6 address used in the IKE communication. |
| Group |
| The Diffie-Hellman group used in the IKE communication: 1: a 768-bit MODP group 2: a 1024-bit MODP group 5: a 1536-bit MODP group 14: a 2048-bit MODP group 15: a 3072-bit MODP group 16: a 4096-bit MODP group. |