Résultat d'un sh crypto ipsec sa:

interface: GigabitEthernet8
Crypto map tag: rtp, local addr 123.123.123.123

protected vrf: (none)
local ident (addr/mask/prot/port): (10.15.0.0/255.255.0.0/0/0)
remote ident (addr/mask/prot/port): (10.0.0.0/255.0.0.0/0/0)
current_peer 1.111.1.111 port 500
PERMIT, flags={origin_is_acl,}
#pkts encaps: 271252562, #pkts encrypt: 271252562, #pkts digest: 271252562
#pkts decaps: 335397886, #pkts decrypt: 335397886, #pkts verify: 335397886
#pkts compressed: 0, #pkts decompressed: 0
#pkts not compressed: 0, #pkts compr. failed: 0
#pkts not decompressed: 0, #pkts decompress failed: 0
#send errors 0, #recv errors 1126

local crypto endpt.: 123.123.123.123, remote crypto endpt.: 1.111.1.111
plaintext mtu 1438, path mtu 1500, ip mtu 1500, ip mtu idb GigabitEthernet8
current outbound spi: 0xE5683D6A(3848813930)
PFS (Y/N): Y, DH group: group5

inbound esp sas:
spi: 0x4B51388(78975880)
transform: esp-256-aes esp-sha256-hmac ,
in use settings ={Tunnel, }
conn id: 567, flow_id: Onboard VPN:567, sibling_flags 80000040, crypto map: rtp
sa timing: remaining key lifetime (k/sec): (4283283/2198)
IV size: 16 bytes
replay detection support: Y
Status: ACTIVE(ACTIVE)

inbound ah sas:

inbound pcp sas:

outbound esp sas:
spi: 0xE5683D6A(3848813930)
transform: esp-256-aes esp-sha256-hmac ,
in use settings ={Tunnel, }
conn id: 568, flow_id: Onboard VPN:568, sibling_flags 80000040, crypto map: rtp
sa timing: remaining key lifetime (k/sec): (4332814/2198)
IV size: 16 bytes
replay detection support: Y
Status: ACTIVE(ACTIVE)

outbound ah sas:

outbound pcp sas:

protected vrf: (none)
local ident (addr/mask/prot/port): (10.120.0.0/255.255.0.0/0/0)
remote ident (addr/mask/prot/port): (10.0.0.0/255.0.0.0/0/0)
current_peer 1.111.1.111 port 500
PERMIT, flags={origin_is_acl,}
#pkts encaps: 468158, #pkts encrypt: 468158, #pkts digest: 468158
#pkts decaps: 344671, #pkts decrypt: 344671, #pkts verify: 344671
#pkts compressed: 0, #pkts decompressed: 0
#pkts not compressed: 0, #pkts compr. failed: 0
#pkts not decompressed: 0, #pkts decompress failed: 0
#send errors 0, #recv errors 0

local crypto endpt.: 123.123.123.123, remote crypto endpt.: 1.111.1.111
plaintext mtu 1438, path mtu 1500, ip mtu 1500, ip mtu idb GigabitEthernet8
current outbound spi: 0xB2F6802F(3002499119)
PFS (Y/N): Y, DH group: group5

inbound esp sas:
spi: 0xE333F197(3811832215)
transform: esp-256-aes esp-sha256-hmac ,
in use settings ={Tunnel, }
conn id: 569, flow_id: Onboard VPN:569, sibling_flags 80000040, crypto map: rtp
sa timing: remaining key lifetime (k/sec): (4252130/2751)
IV size: 16 bytes
replay detection support: Y
Status: ACTIVE(ACTIVE)

inbound ah sas:

inbound pcp sas:

outbound esp sas:
spi: 0xB2F6802F(3002499119)
transform: esp-256-aes esp-sha256-hmac ,
in use settings ={Tunnel, }
conn id: 570, flow_id: Onboard VPN:570, sibling_flags 80000040, crypto map: rtp
sa timing: remaining key lifetime (k/sec): (4252102/2751)
IV size: 16 bytes
replay detection support: Y
Status: ACTIVE(ACTIVE)

outbound ah sas:

outbound pcp sas:

protected vrf: (none)
local ident (addr/mask/prot/port): (10.15.0.0/255.255.0.0/0/0)
remote ident (addr/mask/prot/port): (172.25.5.0/255.255.255.0/0/0)
current_peer 1.111.1.111 port 500
PERMIT, flags={origin_is_acl,}
#pkts encaps: 0, #pkts encrypt: 0, #pkts digest: 0
#pkts decaps: 0, #pkts decrypt: 0, #pkts verify: 0
#pkts compressed: 0, #pkts decompressed: 0
#pkts not compressed: 0, #pkts compr. failed: 0
#pkts not decompressed: 0, #pkts decompress failed: 0
#send errors 2031, #recv errors 0

local crypto endpt.: 123.123.123.123, remote crypto endpt.: 1.111.1.111
plaintext mtu 1500, path mtu 1500, ip mtu 1500, ip mtu idb GigabitEthernet8
current outbound spi: 0x0(0)
PFS (Y/N): N, DH group: none

inbound esp sas:

inbound ah sas:

inbound pcp sas:

outbound esp sas:

outbound ah sas:

outbound pcp sas: