Suggested Answer:ADF🗳️
Supported Condition Types - The new crypto conditional debug CLIs--debug crypto condition, debug crypto condition unmatched, and show crypto debug-condition--allow you to specify conditions (filter values) in which to generate and display debug messages related only to the specified conditions. The table below lists the supported condition types. Table 1 Supported Condition Types for Crypto Debug CLI "Pass Any Exam. Any Time." - www.actualtests.com 392 Condition Type (Keyword)
Description - connid 1 An integer between 1-32766. Relevant debug messages will be shown if the current IPSec operation uses this value as the connection ID to interface with the crypto engine. flowid 1 An integer between 1-32766. Relevant debug messages will be shown if the current IPSec operation uses this value as the flow-ID to interface with the crypto engine.
FVRF - The name string of a virtual private network (VPN) routing and forwarding (VRF) instance. Relevant debug messages will be shown if the current IPSec operation uses this VRF instance as its front-door VRF (FVRF).
IVRF - The name string of a VRF instance. Relevant debug messages will be shown if the current IPSec operation uses this VRF instance as its inside VRF (IVRF). peer group A Unity group-name string. Relevant debug messages will be shown if the peer is using this group name as its identity. peer hostname A fully qualified domain name (FQDN) string. Relevant debug messages will be shown if the peer is using this string as its identity; for example, if the peer is enabling IKE Xauth with this FQDN string. peeripaddress A single IP address. Relevant debug messages will be shown if the current IPSec operation is related to the IP address of this peer. peer subnet A subnet and a subnet mask that specify a range of peer IP addresses. Relevant debug messages will be shown if the IP address of the current IPSec peer falls into the specified subnet range. peer username A username string. Relevant debug messages will be shown if the peer is using this username as its identity; for example, if the peer is enabling IKE Extended Authentication (Xauth) with this username.
SPI 1 - A 32-bit unsigned integer. Relevant debug messages will be shown if the current IPSec operation uses this value as the SPI. Reference: http://www.cisco.com/c/en/us/td/docs/ios-xml/ios/sec_conn_vpnips/configuration/xe- 3s/sec-sec-for-vpns-w-ipsec-xe-3s-book/sec-crypto-debug- sup.html "Pass Any Exam. Any Time." - www.actualtests.com 393
Currently there are no comments in this discussion, be the first to comment!
This section is not available anymore. Please use the main Exam Page.400-101 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Comments