Here is the testing the VPN when connected
Verify the IKE Phase 1 established.
>show security ike security-associations
root@Gtown-VPN02> show security ike security-associations
Index State Initiator cookie Responder cookie Mode Remote Address
2552869 UP 44c3efcf9e5874d4 fd389b0512031635 Aggressive 50.181.136.83
Verify that the remote clients and the IP addresses assigned to them are using XAuth.
>show security ike active-peer
e-peer
Remote Address Port Peer IKE-ID XAUTH username Assigned IP
50.181.136.83 1886 rcarongtSRX-GW rcarongt 192.168.0.31
Verify the IPSEC Phase 2 established.
>show security ipsec security-associations
root@Gtown-VPN02> show security ipsec security-associations
Total active tunnels: 1
ID Algorithm SPI Life:sec/kb Mon lsys Port Gateway
<268173329 ESP:aes-cbc-128/sha1 cfcac6f5 3497/ 500000 - root 1886 50.181.136.83
>268173329 ESP:aes-cbc-128/sha1 5e4705de 3497/ 500000 - root 1886 50.181.136.83
Verify the connection and the negotiated parameters.
>show security dynamic-vpn users
root@Gtown-VPN02> show security dynamic-vpn users
User: rcarongt , Number of connections: 1
Remote IP: 50.181.136.83
IPSEC VPN: startup_rvpn
IKE gateway: gw_startup_rvpn
IKE ID : rcarongtSRX-GW
IKE Lifetime: 28800
IPSEC Lifetime: 3600
Status: CONNECTED