Login
- Table of Contents
-
- 10-Security Command Reference
- 00-Preface
- 01-AAA commands
- 02-Password control commands
- 03-Public key management commands
- 04-PKI commands
- 05-IPsec commands
- 06-SSH commands
- 07-IP source guard commands
- 08-ARP attack protection commands
- 09-uRPF commands
- 10-SSL commands
- 11-Crypto engine commands
- 12-FIPS commands
- 13-Portal commands
- 14-MACsec commands
- 15-Attack detection and prevention commands
- 16-Object group commands
- Related Documents
-
| Title | Size | Download |
|---|---|---|
| 11-Crypto engine commands | 58.96 KB |
display crypto-engine
Use display crypto-engine to display information about crypto engines, including crypto engine names and supported algorithms.
Syntax
display crypto-engine
Views
Any view
Predefined user roles
network-admin
network-operator
mdc-admin
mdc-operator
Examples
# Display information about crypto engines.
<Sysname> display crypto-engine
Crypto engine name: Software crypto engine
Crypto engine state: Enabled
Crypto engine type: Software
Slot ID: 0
Crypto engine ID: 1
Symmetric algorithms: des-cbc des-ecb 3des-ecb aes-ecb sha1 sha2-256 sha1-hmac sha2-256-hmac
Asymmetric algorithms:
Random number generation function: Supported
Table 1 Command output
|
Field |
Description |
|
Slot ID |
ID of the LPU that holds the crypto engine. |
|
Symmetric algorithms |
Supported symmetric algorithms. |
|
Asymmetric algorithms |
Supported asymmetric algorithms. |
|
Random number generation function |
Whether random number generation function is supported: · Supported. · Not supported. |
Related commands
crypto-engine accelerator disable
display crypto-engine statistics
Use display crypto-engine statistics to display statistics for crypto engines, including the number of established sessions and the number of packets processed by crypto engines.
Syntax
display crypto-engine statistics [ engine-id engine-id slot slot-number [ cpu cpu-number ] ]
In IRF mode:
display crypto-engine statistics [ engine-id engine-id chassis chassis-number slot slot-number [ cpu cpu-number ] ]
Views
Any view
Predefined user roles
network-admin
network-operator
mdc-admin
mdc-operator
Parameters
engine-id engine-id: Specifies a crypto engine by its ID in the range of 0 to 4294967295.
slot slot-number: Specifies a card by its slot number. If you do not specify a card, this command displays statistics for the crypto engines on all cards. (In standalone mode.)
chassis chassis-number slot slot-number: Specifies a card on an IRF member device. The chassis-number argument specifies the IRF member device ID, and the slot-number argument specifies the number of the slot where the card resides. If you do not specify this option, the command displays statistics for the crypto engines on all cards in the IRF fabric. (In IRF mode.)
cpu cpu-number: Specifies a CPU by its number.
Examples
# Display statistics for all crypto engines.
<Sysname> display crypto-engine statistics
Submitted sessions: 0
Failed sessions: 0
Symmetric operations: 0
Symmetric errors: 0
Asymmetric operations: 0
Asymmetric errors: 0
Get-random operations: 0
Get-random errors: 0
# In standalone mode, display statistics for crypto engine 1 on card 2.
<Sysname> display crypto-engine statistics engine-id 1 slot 2
Submitted sessions: 0
Failed sessions: 0
Symmetric operations: 0
Symmetric errors: 0
Asymmetric operations: 0
Asymmetric errors: 0
Get-random operations: 0
Get-random errors: 0
# In IRF mode, display statistics for crypto engine 1 on card 2 in IRF member device 1.
<Sysname> display crypto-engine statistics engine-id 1 chassis 1 slot 2
Submitted sessions: 0
Failed sessions: 0
Symmetric operations: 0
Symmetric errors: 0
Asymmetric operations: 0
Asymmetric errors: 0
Get-random operations: 0
Get-random errors: 0
Table 2 Command output
|
Field |
Description |
|
Submitted sessions |
Number of established sessions. |
|
Failed sessions |
Number of failed sessions. |
|
Symmetric operations |
Number of operations using symmetric algorithms. |
|
Symmetric errors |
Number of failed operations using symmetric algorithms. |
|
Asymmetric operations |
Number of operations using asymmetric algorithms. |
|
Asymmetric errors |
Number of failed operations using asymmetric algorithms. |
|
Get-random operations |
Number of operations for obtaining random numbers. |
|
Get-random errors |
Number of failed operations for obtaining random numbers. |
Related commands
reset crypto-engine statistics
reset crypto-engine statistics
Use reset crypto-engine statistics to clear statistics for crypto engines.
Syntax
In standalone mode:
reset crypto-engine statistics [ engine-id engine-id slot slot-number [ cpu cpu-number ] ]
In IRF mode:
reset crypto-engine statistics [ engine-id engine-id chassis chassis-number slot slot-number [ cpu cpu-number ] ]
Views
Any view
Predefined user roles
network-admin
mdc-admin
Parameters
engine-id engine-id: Specifies a crypto engine by its ID in the range of 0 to 4294967295.
slot slot-number: Specifies a card by its slot number. If you do not specify a card, this command clears statistics for the crypto engines on all cards. (In standalone mode.)
chassis chassis-number slot slot-number: Specifies a card on an IRF member device. The chassis-number argument specifies the IRF member device ID, and the slot-number argument specifies the number of the slot where the card resides. If you do not specify this option, the command clears statistics for the crypto engines on all cards in the IRF fabric. (In IRF mode.)
cpu cpu-number: Specifies a CPU by its number.
Examples
# Clear statistics for all crypto engines.
<Sysname> reset crypto-engine statistics
Related commands
