I'm seeing some odd behaviour with an SRX 1400 (12.3X48-D55.4) and the "show security ipsec inactive-tunnels" command. The firewall reports dozens of VPN tunnels as inactive, "Dynamic tunnel configuration is ready. Waiting for peer(s) to initiate negotation (1 times)" as the reason. However, I know for sure that many of these tunnels are actually up and working just fine. Clearing the tunnel and letting the firewalls renegotiate it doesn't affect anything.
Seems like the problem is only relared to aggressive mode / responder role tunnels, main mode tunnels are showing up correctly only if they do have an actual problem. Any idea what could cause that? Google is not really being helpful here..