Cookies: Displays the negotiation Cookies which are used to match SA Phase 1.

Status: Displays the status of SA Phase1.

• established - Indicates that SA Phase1 is successful.

Peer: Displays the IP address of the peer.

Port: The port number used by the SA Phase1. 500 indicates that no NAT has been found during the SA Phase 1; 4500 indicates that NAT has been detected.

Algorithm: Displays the algorithm of the SA Phase1, including authentication method, encryption algorithm and verification algorithm.

Lifetime: Displays the lifetime of SA Phase1. The unit is second.

ID: Displays the tunnel ID number which is auto assigned by the system.

VPN name: Displays the name of VPN.

Direction: Displays the direction of VPN.

Peer: Displays the IP address of the peer.

Port: The port number used by the SA Phase2.

Algorithm: The algorithm used by the tunnel, including protocol type, encryption algorithm, verification algorithm and depression algorithm.

SPI: Displays the local SPI and the peer SPI. The direction of inbound is local SPI, while outbound is peer SPI.

CPI: Displays the compression parameter index (CPI) used by SA Phase2.

Life (s): Displays the lifetime of SA Phase2 in second, i.e. SA Phase2 will restart negotiating after X seconds.

Life (KB): Displays the lifetime of SA Phase2 in KB, i.e. SA Phase2 will restart negotiating after X kilobytes of data flow.

Status: Displays the status of SA Phase2.

Peer: Displays the statistic information of the peer user. Select the peer you want from the Peer drop-down list.

User ID: Displays the IKE ID of the user selected.

IP: Displays the corresponding IP address.

Encrypted packets: Displays the number of encrypted packets transferred through the tunnel.

Encrypted bytes: Displays the number of encrypted bytes transferred through the tunnel.

Decrypted packets: Displays the number of decrypted packets transferred through the tunnel.

Decrypted bytes: Displays the number of decrypted bytes transferred through the tunnel.