display ike global config

Function

The display ike global config command displays global IKE configurations.

Format

display ike global config

Parameters

None.

Views

All views

Default Level

1: Monitoring level

Usage Guidelines

You can run this command to view global IKE configurations, such as the local name used in IKE negotiation, interval for sending heartbeat packets, timeout interval of heartbeat packets, and interval for sending NAT keepalive packets.

Example

# Display global IKE configurations.

<HUAWEI> display ike global config
IKE Global Config:                                   
--------------------------------------------------------------
  IKE local-name                   : huawei
  IKE heartbeat-timer interval     : 30
  IKE heartbeat-timer timeout      : 100
  IKE nat-keepalive-timer interval : 52   IKEv1 phase1-phase2 sa dependent : enable   IKE DSCP                         : -   IKEv2 initial-contact            : enable   IKEv2 delete old child-sa        : enable
--------------------------------------------------------------

**Table 1** Description of the **display ike global config** command output
Item	Description
IKE Global Config	Global IKE configurations.
IKE local-name	Local peer name used in IKE negotiation. This parameter can be configured using the ike local-name command. If the ike local-name command is not run, the device name configured using the sysname command is used for IKE negotiation.
IKE heartbeat-timer interval	Interval (in seconds) at which a device sends heartbeat packets through an IKE SA. This parameter is configured using the ike heartbeat-timer interval command.
IKE heartbeat-timer timeout	Timeout period (in seconds) of sending heartbeat packets through an IKE SA. This parameter is configured using the ike heartbeat-timer timeout command.
IKE nat-keepalive-timer interval	Interval (in seconds) at which a device sends NAT keepalive packets through an IKE SA. This parameter is configured using the ike nat-keepalive-timer interval command.
IKEv1 phase1-phase2 sa dependent	Dependency between an IPSec SA and an IKE SA during IKEv1 negotiation is enabled. enable disable This function is configured using the ikev1 phase1-phase2 sa dependent command.
IKE DSCP	Global DSCP value of IKE packets. This parameter can be configured using the ike dscp command.
IKEv2 initial-contact	Whether the first IKE_AUTH request message carries the INITIAL_CONTACT notification payload. enable disable This function is configured using the ikev2 initial-contact enable command.
IKEv2 delete old child-sa	Whether to enable the function of instructing the peer device to delete the old child SA: enable disable This function is configured using the ikev2 delete old child-sa enable command.