How to check the detailed information of concurrent VPN connections via the CLI?
Zyxel Employee
Question :
In the article: How to check the number of concurrent VPN connections via the CLI?users can learn how to check the number of concurrent VPN connections using the CLI. They may also want to check the detailed information of these connections. This article will guide you on how to do this.
Answer :
Please use the CLI command show ike ike-sa details to check it.
For example :
usgflex100h> show ike ike-sa details
VTI_tunnel_ATP100W: #1, ESTABLISHED, IKEv1, 9819740a212ed150_i 2efc342628d48244_r
local '10.214.48.34' @ 10.214.48.34[500]
remote '10.214.48.36' @ 10.214.48.36[500]
aes128-cbc/hmac-sha1/hmac-sha1/modp1024
established 13477s ago, rekeying in 72009s
sec_policy1_VTI_tunnel_ATP100W: #2, reqid 1, INSTALLED, TUNNEL, esp:aes128-cbc/hmac-sha1/modp1024
installed 13477s ago, rekeying in 12636s, expires in 18203s
in c9b6f230, 0 bytes, 0 packets
out a9b9c346, 0 bytes, 0 packets
local 192.168.168.0/24
remote 192.168.1.0/24
This means the USG Flex 100H has one concurrent VPN connection along with its detailed connection information (such as the peer IP, phase 1/2 proposals, inbound/outbound traffic, and local/remote subnet).
Categories
- All Categories
- 429 Beta Program
- 2.6K Nebula
- 163 Nebula Ideas
- 112 Nebula Status and Incidents
- 6K Security
- 350 USG FLEX H Series
- 291 Security Ideas
- 1.5K Switch
- 78 Switch Ideas
- 1.2K Wireless
- 42 Wireless Ideas
- 6.6K Consumer Product
- 261 Service & License
- 406 News and Release
- 87 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.8K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 82 Security Highlight