You might want to view the currently active security associations on your storage system.
spi is the Security Parameter Index number that identifies an individual entry in the Security Associations Database.
options include the source and destination ip addresses, and the encryption protocol, either esp (ESP based on rfc2405) or ah (AH based on rfc2402).
The following example displays security association information for the device that has a source IP address of 10.56.19.172:
ipsec sa show 1 -s 10.56.19.172 -p esp Alg/State/Spi Current Bytes/CreatedTime SrcIPAddr->DstIPAddr ------------- ------------------------- -------------------- esp/M/0001388 0/20 Aug 2002 17:28:19 10.56.19.172->10.56.19.173
The values for state are:
M Mature and active
D Dead
d Dying
L Larval (uninitiated)