Skip to main content
Cisco SD-WAN
Product Documentation
Viptela Documentation

show tunnel local-sa

show tunnel local-sa—Display the IPsec tunnel security associations for the local TLOCs (on vEdge routers only).

In Releases 15.2 and later, this command has been renamed to show ipsec local-sa.

Command Syntax

show tunnel local-sa
show tunnel local-sa tloc-address [color [spi [(auth-key-hash | encrypt-key-hash | ip | port) ] ] ] ]


Display information for all the IPsec tunnels that originate on the router. The tunnel connections are listed in order according to the local TLOC address.
Specific SA
tloc-address [color [spi [(auth-key-hash | encrypt-key-hash | ip | port) ] ] ] ]​
Display information for a specific security association.

Output Fields

The value in the Key Hash fields is created by taking the encryption and authentication key hash keys and creating a single hash.

The other output fields are self-explanatory.

Example Output

vEdge# show tunnel local-sa
                                          SOURCE           SOURCE             
TLOC ADDRESS     TLOC COLOR       SPI     IP               PORT    KEY HASH   
------------------------------------------------------------------------------    lte              260       12346   *****0979 

Release Information

Command introduced in Viptela Software Release 14.1.
In Release 15.2, command renamed to show ipsec local-sa.

  • Was this article helpful?