Cisco IOS XR System Security Debug Command Reference, Release 3.6
Secure Socket Layer Protocol Debug Commands on Cisco IOS XR Software
Download this chapter
Secure Socket Layer Protocol Debug Commands on Cisco IOS XR SoftwareSecure Socket Layer Protocol Debug Commands on Cisco IOS XR Software
Download the complete book
Cisco IOS XR System Security Debug Command Reference, Release 3.6Cisco IOS XR System Security Debug Command Reference, Release 3.6 (PDF - 1 MB)
give_us_feedback

Table Of Contents

Secure Socket Layer Protocol Debug Commands on Cisco IOS XR Software

debug ssl


Secure Socket Layer Protocol Debug Commands on Cisco IOS XR Software

This chapter describesCisco IOS XR software Secure Socket Layer (SSL) debug commands.

For high-level, conceptual information about using debug commands generally, see Using Debug Commands on Cisco IOS XR Software, Release 3.6.0.

debug ssl

To display Secure Socket Layer (SSL) session information, use the debug ssl command in EXEC mode. To disable debugging output, use the no form of this command.

debug ssl {error | event | handshake | traffic}

no debug ssl {error | event | handshake | traffic}

Syntax Description

error

Displays any errors during control (negotiation) and data phase.

event

Displays SSL negotiation event.

handshake

Displays SSL handshake protocol information.

traffic

Displays SSL traffic information.


Defaults

No default behavior or values

Command Modes

EXEC

Command History

Release
Modification

Release 2.0

This command was introduced on the Cisco CRS-1.

Release 3.0

No modification.

Release 3.2

This command was supported on the Cisco XR 12000 Series Router.

Release 3.3.0

No modification.

Release 3.4.0

No modification.

Release 3.5.0

No modification.

Release 3.6.0

No modification.


Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

Debugging output is assigned high priority in the CPU process and, therefore, can affect system performance. For more information about the impact on system performance when using debug commands, refer to Using Debug Commands on Cisco IOS XR Software.

Task ID

Task ID
Operations

crypto

read


Examples

The following is sample output from the debug ssl command using the error keyword: 

RP/0/RP0/CPU0:router# debug ssl error


SLOT0:Aug 4 15:26:18.729 : SSL_accept:error in SSLv2/v3 read client hello A

SLOT0:Aug 4 15:26:18.731 : Open 0x08057db4 20

SLOT0:Aug 4 15:26:19.815 : (ssl) network data event

SLOT0:Aug 4 15:26:19.821 : SSL_accept:error in SSLv3 read client certificate A

SLOT0:Aug 4 15:26:19.821 : SSL_accept:error in SSLv3 read client certificate A