zERT IPSec Summary

Navigation:  Table of Contents > Reports > TCP/IP zERT Summary >

zERT IPSec Summary

 Previous pageReturn to chapter overviewNext page

This report lists zERT entries and encryption attributes for IPSec connections.

 

Entries are grouped by local and remote IP address, port and cryptographic attributes.

 

Report Parameters

 

Parameter

Description

System

The SMF ID of the system that wrote the record.

Jobname

Local job name.

Userid

Local userid.

IP Address

Local or remote IP address

Port

Server port

Exclude Loopback

Exclude connections to the loopback address 127.0.0.1 or ::1 from the report.

Enc Alg

Filter by tunnel encryption algorithm.

Auth Alg

Filter by authentication algorithm.

DH Group

Filter by Diffie-Hellman group.

Pseudo Rand Func

Filter by pseudo-random function.

Sig Method

Filter by certificate signature method.

Cert Enc Method

Filter by certificate encryption method.

Cert Digest Alg

Filter by certificate digest algorithm.

Key Type

Filter by certificate key type.

Encap Mode

Filter by tunnel encapsulation mode.

Auth Protocol

Filter by message authentication protocol.

 

Columns

 

Column

Description

System

The system that wrote the record.

Server IP

IP Address of the server end of the connection.

Client IP

IP Address of the client end of the connection.

Port

The server port for the connection, or the starting value of the port range.

IKE Protocol

IKE protocol version.

Local Auth Method

Local endpoint authentication method.

Remote Auth Method

Remote endpoint authentication method.

Tunnel Auth Alg

Tunnel authentication algorithm.

Tunnel Enc Alg

Tunnel encryption algorithm.

Local End Point

Local IP address of tunnel endpoint.

Remote End Point

Remote IP address of tunnel endpoint.

Entries

The number of entries in this grouping.

Jobname

The z/OS job name associated with the socket.

Userid

The z/OS userid associated with the socket.

From

The start time of the first grouped interval.

To

The end time of the last grouped interval.

Connections

The count of connections in the group - the end connection count minus start connection count for each interval.

Short Connections

The count of short connections (less than 10 seconds).

Partial Connections

The count of partial connections: connections where the connection existed before or continued to exist after the security session.

Diffie-Hellman Group

Diffie-Hellman group used to generate the keying material for the IKE tunnel.

Pseudo-Random Func

Pseudo-random function used for seeding key.

Local Cert Sig Method

Local IKE certificate signature method.

Local Cert Enc Method

Local IKE certificate encryption method.

Local Cert Digest Alg

Local IKE certificate digest algorithm.

Local Cert Key Type

Local IKE certificate key type.

Local Cert Key Len

Local IKE certificate key length.

Remote Cert Sig Method

Remote IKE certificate signature method.

Remote Cert Enc Method

Remote IKE certificate encryption method.

Remote Cert Digest Alg

Remote IKE certificate digest algorithm.

Remote Cert Key Type

Remote IKE certificate key type.

Remote Cert Key Len

Remote IKE certificate key length.

PFS Group

Diffie-Hellman group used for perfect forward secrecy.

Encapsulation Mode

Tunnel encapsulation mode.

IPSec Auth Protocol

Message authentication protocol.

IPSec Auth Alg

Tunnel authentication algorithm.

IPSec Enc Alg

Tunnel encryption algorithm.