show ssl
To display active Secure Socket Layer (SSL) sessions, use the show ssl command in EXEC mode.
show ssl [process-id]
Syntax Description
|
process-id |
(Optional) Process ID (PID) of the SSL application. The range is from 1 to 1000000000. |
Command Default
None
Command Modes
EXEC modeCommand History
|
Release |
Modification |
|---|---|
|
Release 2.0 |
This command was introduced. |
Usage Guidelines
To display a specific process, enter the process ID number. To get a specific process ID number, enter run pidin from the command line or from a shell.
The absence of any argument produces a display that shows all processes that are running SSL.
Task ID
|
Task ID |
Operations |
|---|---|
|
crypto |
read |
Examples
The following sample output is from the show ssl command:
RP/0/RP0/CPU0:router# show ssl
PID Method Type Peer Port Cipher-Suite
============================================================================
1261711 sslv3 Server 172.16.0.5 1296 DES-CBC3-SHA
This table describes the fields shown in the display.
|
Field |
Description |
|---|---|
|
PID |
Process ID of the SSL application. |
|
Method |
Protocol version (sslv2, sslv3, sslv23, or tlsv1). |
|
Type |
SSL client or server. |
|
Peer |
IP address of the SSL peer. |
|
Port |
Port number on which the SSL traffic is sent. |
|
Cipher-Suite |
Exact cipher suite chosen for the SSL traffic. The first portion indicates the encryption, the second portion the hash or integrity method. In the sample display, the encryption is Triple DES and the Integrity (message digest algorithm) is SHA. |
Feedback