Networking
>
Services
>
VPN
>
IPSec
>
Security
get ipsecvpn sad
Display all IPSec SAs present in Security Association Database(datapath).
Example:
nsx-edge-1> get ipsecvpn sad
Total Number of IPSec SAs: 2
Inbound SAs:
Rule ID : 2147484675
Policy UUID : 00003400-0000-0800-0000-080b00000000
VRF ID : 1
SPI : 0xf835f82a
Created Timestamp : 2018-03-19 10:24:21
SA Uptime : 496 sec
SA Lifetime : 3600 sec
NAT-Traversal : False
ESN : False
DF Policy : clear
SA Hit : 1
Sequence Number (Recv) : 1234
Anti-Replay Window Size : 960
TCP MSS Value : 1350
Traffic Mode : Tunnel
Protocol : ESP
IP Address:
Source : 1.1.5.100
Destination : 192.168.128.1
Subnets:
Source : 2.2.5.0/24
Destination : 192.168.100.0/24
Algorithm:
Encryption : aes-128-cbc
Authentication : sha256-hmac
Multi-Path : Enabled
Path Index 0 : Seq Num (1)
Path Index 1 : Seq Num (3)
Path Index 2 : Seq Num (21)
Path Index 3 : Seq Num (10)
Path Index 4 : Seq Num (22)
Path Index 5 : Seq Num (4)
Path Index 6 : Seq Num (6)
Path Index 7 : Seq Num (0)
----------------------------------------
Outbound SAs:
Rule ID : 1027
Policy UUID : 00003400-0000-0800-0000-080b00000000
VRF ID : 1
SPI : 0xc3f194fa
Created Timestamp : 2018-03-19 10:24:21
SA Uptime : 496 sec
SA Lifetime : 3600 sec
NAT-Traversal : False
ESN : False
DF Policy : clear
SA Hit : 1
Sequence Number (Sent) : 1234
Anti-Replay Window Size : 960
TCP MSS Value : 1350
Traffic Mode : Tunnel
Protocol : ESP
IP Address:
Source : 192.168.128.1
Destination : 1.1.5.100
Subnets:
Source : 192.168.100.0/24
Destination : 2.2.5.0/24
Algorithm:
Encryption : aes-128-cbc
Authentication : sha256-hmac
Multi-Path : Enabled
Default Path : 4500->4500 (Seq Num : 0)
Active Paths : 4
Path Index 1 : 4500->5001 (Seq Num : 0)
Path Index 2 : 4500->5002 (Seq Num : 0)
Path Index 3 : 4500->5003 (Seq Num : 0)
Path Index 4 : 4500->5004 (Seq Num : 0)
----------------------------------------
Mode:
Basic
Availability: