▲ 4 r/fortinet
Hi!
Whilst I can see in historical logs and by real-time IKE debugging, I want to see whether existing Child SA was locally initiated (Role: initiator) or remotely (Role: Responder) using CLI command. This fundamental information - perhaps I missed it. Is there such.
Thanks!
PS. This is NOT for (IKE) Secure Channel, as seen in "diagnose vpn ike gateway list"... My question is only for (Child) SAs.
u/AlexFeren — 11 days ago