This report lists zERT entries and encryption attributes for IPSec connections.
Entries are grouped by local and remote IP address, port and cryptographic attributes.
Report Parameters
Parameter |
Description |
System |
The SMF ID of the system that wrote the record. |
Jobname |
Local job name. |
Userid |
Local userid. |
IP Address |
Local or remote IP address |
Port |
Server port |
Exclude Loopback |
Exclude connections to the loopback address 127.0.0.1 or ::1 from the report. |
Enc Alg |
Filter by tunnel encryption algorithm. |
Auth Alg |
Filter by authentication algorithm. |
DH Group |
Filter by Diffie-Hellman group. |
Pseudo Rand Func |
Filter by pseudo-random function. |
Sig Method |
Filter by certificate signature method. |
Cert Enc Method |
Filter by certificate encryption method. |
Cert Digest Alg |
Filter by certificate digest algorithm. |
Key Type |
Filter by certificate key type. |
Encap Mode |
Filter by tunnel encapsulation mode. |
Auth Protocol |
Filter by message authentication protocol. |
Columns
Column |
Description |
System |
The system that wrote the record. |
Server IP |
IP Address of the server end of the connection. |
Client IP |
IP Address of the client end of the connection. |
Port |
The server port for the connection, or the starting value of the port range. |
IKE Protocol |
IKE protocol version. |
Local Auth Method |
Local endpoint authentication method. |
Remote Auth Method |
Remote endpoint authentication method. |
Tunnel Auth Alg |
Tunnel authentication algorithm. |
Tunnel Enc Alg |
Tunnel encryption algorithm. |
Local End Point |
Local IP address of tunnel endpoint. |
Remote End Point |
Remote IP address of tunnel endpoint. |
Entries |
The number of entries in this grouping. |
Jobname |
The z/OS job name associated with the socket. |
Userid |
The z/OS userid associated with the socket. |
From |
The start time of the first grouped interval. |
To |
The end time of the last grouped interval. |
Connections |
The count of connections in the group - the end connection count minus start connection count for each interval. |
Short Connections |
The count of short connections (less than 10 seconds). |
Partial Connections |
The count of partial connections: connections where the connection existed before or continued to exist after the security session. |
Diffie-Hellman Group |
Diffie-Hellman group used to generate the keying material for the IKE tunnel. |
Pseudo-Random Func |
Pseudo-random function used for seeding key. |
Local Cert Sig Method |
Local IKE certificate signature method. |
Local Cert Enc Method |
Local IKE certificate encryption method. |
Local Cert Digest Alg |
Local IKE certificate digest algorithm. |
Local Cert Key Type |
Local IKE certificate key type. |
Local Cert Key Len |
Local IKE certificate key length. |
Remote Cert Sig Method |
Remote IKE certificate signature method. |
Remote Cert Enc Method |
Remote IKE certificate encryption method. |
Remote Cert Digest Alg |
Remote IKE certificate digest algorithm. |
Remote Cert Key Type |
Remote IKE certificate key type. |
Remote Cert Key Len |
Remote IKE certificate key length. |
PFS Group |
Diffie-Hellman group used for perfect forward secrecy. |
Encapsulation Mode |
Tunnel encapsulation mode. |
IPSec Auth Protocol |
Message authentication protocol. |
IPSec Auth Alg |
Tunnel authentication algorithm. |
IPSec Enc Alg |
Tunnel encryption algorithm. |