Enter the following command:

NW TCPIP STATUS

The following response is displayed if IPsec is enabled/running:

TCPIP IS CURRENTLY NETWORKING (IPV6 ENABLED),
 RIP IS CURRENTLY ENABLED/RUNNING,
 TCPIP SECURITY IS CURRENTLY RUNNING,
 SSL IS CURRENTLY RUNNING,
 IPSEC IS CURRENTLY ENABLED/RUNNING (IPV6 - ONLY),
 SSH IS CURRENTLY RUNNING

The following response is displayed if IPsec (and TCPIP in general) is initializing:

TCPIP IS CURRENTLY INITIALIZING,
RIP IS CURRENTLY ENABLED/RUNNING,
TCPIP SECURITY IS CURRENTLY LOADING,
SSL IS CURRENTLY WAITING,
IPSEC IS CURRENTLY WAITING FOR SECURITY CENTER,
SSH IS CURRENTLY WAITING FOR CRYPTOGRAPHY

The following response is displayed if IPsec (and TCPIP in general) is terminating:

TCPIP IS CURRENTLY TERMINATING,
RIP IS CURRENTLY DISABLED/NOT RUNNING,
TCPIP SECURITY IS CURRENTLY DISABLED,
SSL IS CURRENTLY TERMINATING,
IPSEC IS CURRENTLY TERMINATING,
SSH IS CURRENTLY TERMINATING

The following response is displayed if IPsec is disabled/not running:

TCPIP IS CURRENTLY NETWORKING (IPv6 ENABLED),
RIP IS CURRENTLY ENABLED/RUNNING,
TCPIP SECURITY IS CURRENTLY RUNNING,
SSL IS CURRENTLY TERMINATING,
IPSEC IS CURRENTLY DISABLED/NOT RUNNING,
SSH IS CURRENTLY DISABLED/NOT RUNNING

Enter the following command:

NW TCPIP STATUS IPSEC

The following response is displayed if IPsec is enabled/running:

IPSEC IS CURRENTLY ENABLED/RUNNING (IPV6 - ONLY)
KEY EXCHANGE METHODS SUPPORTED = MANUAL
ENCRYPTION ALGORITHMS SUPPORTED = AES_CBC
INTEGRITY ALGORITHMS SUPPORTED = AUTH_HMAC_SHA1_96
SECURITY POLICIES = 2

The following response is displayed if IPsec is initializing:

IPSEC IS CURRENTLY WAITING FOR SECURITY CENTER

The following response is displayed if IPsec is terminating:

IPSEC IS CURRENTLY TERMINATING

The following response is displayed if IPsec is disabled/not running:

IPSEC IS CURRENTLY DISABLED/NOT RUNNING

Enter the following command:

NW TCPIP STATUS IPSEC ALL

The following response is displayed if IPsec is enabled/running. The IPsec status is displayed followed by each security policy.

IPSEC IS CURRENTLY ENABLED/RUNNING (IPV6 - ONLY)
KEY EXCHANGE METHODS SUPPORTED = MANUAL
ENCRYPTION ALGORITHMS SUPPORTED = AES_CBC
INTEGRITY ALGORITHMS SUPPORTED = AUTH_HMAC_SHA1_96
SECURITY POLICIES = 1
SECURITY POLICY #1 =
Policy Name = TRPROGDOUT,
Local IP Address = 2001:0db8::1428:57ab,
Local Selector Name = ,
Remote IP Address = FE80::2A0:D2FF:FEA5:E9F5 TO FE80::2A0:D2FF:FEA5:EA00,
Remote Selector Name = ,
Next Layer Protocol = TCP,
Local Ports = 64000 TO 64500,
Remote Ports = 23400,
Direction = OUTBOUND,
IPsec Action = PROTECT,
Security Policy Index = 35,
Protocol = AH,
IPsec Mode = TRANSPORT,
Integrity Algorithm Type = AUTH_HMAC_SHA1_96,
Integrity Key Name = IPSECKEY

Enter the following command:

NW TCPIP STATUS IPSEC IPADDRESS

The following response is displayed if IPsec is enabled/running. The IPsec status is displayed followed by each security policy selected by the specified REMOTE IP address.

IPSEC IS CURRENTLY ENABLED/RUNNING (IPV6 - ONLY)
KEY EXCHANGE METHODS SUPPORTED = MANUAL
ENCRYPTION ALGORITHMS SUPPORTED = AES_CBC
INTEGRITY ALGORITHMS SUPPORTED = AUTH_HMAC_SHA1_96
SECURITY POLICIES = 2
SECURITY POLICY # 1 =
Policy Name = TRPROGD,
Local IP Address = ANY,
Local Selector Name = NULL,
Remote IP Address = FEC0::2A0:D2FF:FEA5:E9F5 TO FEC0::2A0:D2FF:FEA5:EA00,
Remote Selector Name = NULL,
Next Layer Protocol = TCP,
Local Ports = 64000 TO 64500,
Remote Ports = 23400,
Direction = OUTBOUND,
IPsec Action = DISCARD
SECURITY POLICY # 2 =
Policy Name = CORPORATE,
Local IP Address = ANY,
Local Selector Name = TRPROGD,
Remote IP Address = FEC0::2A0:D2FF:FEA5:0000 TO FEC0::2A0:D2FF:FEA5:FFFF,
Remote Selector Name = CORPLAN,
Next Layer Protocol = ANY,
Local Ports = ANY,
Remote Ports = ANY,
Direction = OUTBOUND,
IPsec Action = PROTECT,
Security Policy Index = 57,
Protocol = ESP Confidentiality & ESP Integrity,
IPsec Mode = TRANSPORT,
Confidentiality Key Name = TRPROGDCONF,
Confidentiality Algorithm = AES_CBC,
Integrity Key Name = TRPROGDINT,
Integrity Algorithm = AUTH_HMAC_SHA1_96

Enter the following command:

NW TCPIP STATUS SSH

The following response is displayed if SSH is waiting for cryptography:

NW TCPIP STATUS SSH
SSH IS CURRENTLY WAITING FOR CRYPTOGRAPHY

The following response is displayed if SSH is enabled/running:

 NW TCPIP STATUS SSH
SSH IS CURRENTLY ENABLED/RUNNING
KEY EXCHANGE ALGORITHMS SUPPORTED:
DIFFIE-HELLMAN-GROUP1,
DIFFIE-HELLMAN-GROUP14
ENCRYPTION ALGORITHMS SUPPORTED:
AES256-CBC,
AES128-CBC,
MAC ALGORITHMS SUPPORTED:
HMAC-SHA1,
HMAC-SHA2-256
HOST KEY ALGORITHMS SUPPORTED:
SSH-RSA
USER AUTHENTICATION MECHANISMS SUPPORTED:
PUBLIC KEY,
PASSWORD

The following response is displayed if SSH is terminating:

NW TCPIP STATUS SSH
SSH IS CURRENTLY TERMINATING

The following response is displayed if SSH is disabled/not running:

NW TCPIP STATUS SSH
SSH IS CURRENTLY DISABLED/NOT RUNNING

Enter the following command:

NW TCPIP STATUS SSL

The following response is displayed if SSL is waiting for cryptography:

NW TCPIP STATUS SSL 
SSL IS CURRENTLY WAITING FOR CRYPTOGRAPHY

The following response is displayed if SSL is enabled/running:

NW TCPIP STATUS SSL

SSL IS CURRENTLY RUNNING
VERSIONS SUPPORTED:
 TLS 1.2
CIPHERS SUPPORTED:
 TLS_RSA_WITH_AES_128_CBC_SHA,
 TLS_RSA_WITH_AES_256_CBC_SHA,
 TLS_RSA_WITH_AES_128_CBC_SHA256,
 TLS_RSA_WITH_AES_256_CBC_SHA256,
 RSA_WITH_AES_128_GCM_SHA256,
 RSA_WITH_AES_256_GCM_SHA384,
 DHE_RSA_WITH_AES_128_GCM_SHA256,
 DHE_RSA_WITH_AES_256_GCM_SHA384,
 ECDHE_ECDSA_AES_128_CBC_SHA256,
 ECDHE_ECDSA_AES_256_CBC_SHA384,
 ECDHE_RSA_WITH_AES_128_CBC_SHA256,
 ECDHE_RSA_WITH_AES_256_CBC_SHA384,
 ECDHE_ECDSA_AES_128_GCM_SHA256,
 ECDHE_ECDSA_AES_256_GCM_SHA384,
 ECDHE_RSA_WITH_AES_128_GCM_SHA256,
 ECDHE_RSA_WITH_AES_256_GCM_SHA384

The following response is displayed if SSL is terminating:

NW TCPIP STATUS SSL
SSL IS CURRENTLY TERMINATING

The following response is displayed if SSL is disabled/not running:

NW TCPIP STATUS SSL
SSL IS CURRENTLY DISABLED/NOT RUNNING