How to check the detailed information of concurrent VPN connections via the CLI?
Zyxel Employee
Question :
In the article: How to check the number of concurrent VPN connections via the CLI?users can learn how to check the number of concurrent VPN connections using the CLI. They may also want to check the detailed information of these connections. This article will guide you on how to do this.
Answer :
Please use the CLI command show ike ike-sa details to check it.
For example :
usgflex100h> show ike ike-sa details
VTI_tunnel_ATP100W: #1, ESTABLISHED, IKEv1, 9819740a212ed150_i 2efc342628d48244_r
local '10.214.48.34' @ 10.214.48.34[500]
remote '10.214.48.36' @ 10.214.48.36[500]
aes128-cbc/hmac-sha1/hmac-sha1/modp1024
established 13477s ago, rekeying in 72009s
sec_policy1_VTI_tunnel_ATP100W: #2, reqid 1, INSTALLED, TUNNEL, esp:aes128-cbc/hmac-sha1/modp1024
installed 13477s ago, rekeying in 12636s, expires in 18203s
in c9b6f230, 0 bytes, 0 packets
out a9b9c346, 0 bytes, 0 packets
local 192.168.168.0/24
remote 192.168.1.0/24
This means the USG Flex 100H has one concurrent VPN connection along with its detailed connection information (such as the peer IP, phase 1/2 proposals, inbound/outbound traffic, and local/remote subnet).
Share your feedback through our survey, make your voice heard, and win a WiFi 7 AP! https://bit.ly/2024_Survey_Community
Categories
- All Categories
- 415 Beta Program
- 2.4K Nebula
- 144 Nebula Ideas
- 94 Nebula Status and Incidents
- 5.6K Security
- 237 USG FLEX H Series
- 267 Security Ideas
- 1.4K Switch
- 71 Switch Ideas
- 1.1K Wireless
- 40 Wireless Ideas
- 6.3K Consumer Product
- 247 Service & License
- 384 News and Release
- 83 Security Advisories
- 29 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.2K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 83 About Community
- 71 Security Highlight