show vpn ipsec status
Outputs information that indicates whether or not the daemon process that is in charge of IPsec is active.
Command and output example
user@system:~$ show vpn ipsec status
IPSec Process Running PID: 4366
1 Active IPsec Tunnels
What to look for
In a high-availability setup it would be unusual to see the IPsec process run on the backup and to have a process ID (PID).
The last line shows the number of active IPsec tunnels in the kernel. If the number of active tunnels is much larger than the number of configured tunnels then there is a problem. To find the number of configured tunnels, run the command show configuration commands | grep ipsec | grep tunnel
.