Router1#show crypto ipsec sa peer 10.1.1.2
interface: Tunnel0
Crypto map tag: VPN-CM, local addr 10.1.1.1
protected vrf: (none)
local ident (addr/mask/prot/port): (10.1.1.0/255.255.255.0/0/0)
remote ident (addr/mask/prot/port): (10.2.2.0/255.255.255.0/0/0)
current_peer 10.1.1.2 port 500
PERMIT, flags={origin_is_acl,}
#pkts encaps: 0, #pkts encrypt: 0, #pkts digest: 0
#pkts decaps: 0, #pkts decrypt: 0, #pkts verify: 0
#send errors 0, #recv errors 0
local crypto endpt.: 10.1.1.1, remote crypto endpt.: 10.1.1.2
path mtu 1500, ipsec overhead 66, media mtu 1500
current outbound spi: 0x0(0)
PFS (Y/N): N, DH group: none
inbound esp sas:
spi: 0x0(0)
transform: esp-aes 256 esp-sha-hmac ,
in use settings ={Tunnel, }
conn id: 0, flow_id: 0, sibling_flags 80000040, crypto map: VPN-CM
sa timing: remaining key lifetime (k/sec): (0/0)
IV size: 16 bytes
replay detection support: Y
inbound ah sas:
inbound pcp sas:
outbound esp sas:
spi: 0x0(0)
transform: esp-aes 256 esp-sha-hmac ,
in use settings ={Tunnel, }
conn id: 0, flow_id: 0, sibling_flags 80000040, crypto map: VPN-CM
sa timing: remaining key lifetime (k/sec): (0/0)
IV size: 16 bytes
replay detection support: Y
outbound ah sas:
outbound pcp sas:
Router1#show crypto isakmp sa
dst src state conn-id slot
10.1.1.2 10.1.1.1 MM_NO_STATE 1 0