yeah. that's good start.
gw1> vpn tu tlist | grep -A1 -B4 User:
^
Bad parameter starting at '| grep -A1 -B4 User:'
whatewer vpn tu tlist give first readable output. I completly forgot about tlist switch and it was not mentioned in command help. Even the I enabled statistic, nothing readable is written.
gw1> vpn tu -t tlist
+-----------------------------------------+-----------------------+---------------------+
| Peer: 172.160.11.4 (89bf1149ce499691) | MSA: ffff00040becb538 | i: 3 ref: 1 |
| Methods: ESP Tunnel 3DES SHA1 | | i: 4 ref: 4 |
| My TS: 0.0.0.0/0 | | |
| Peer TS: 172.160.11.4 | | |
| User: CN=....user1.....,OU=users,O=gw-..| NAT-T | |
| MSPI: 2000064 (i: 4, p: 0) | Out SPI: d3807e48 | |
+-----------------------------------------+-----------------------+---------------------+
gw1> vpn tu tlist -t
Usage:
vpn tu tlist [VOLUME_STATISTICS_OPTION] [OPTION]...
List information about existing VPN tunnels
Example: vpn tu tlist -v -t -br (or -vtbr)
VOLUME_STATISTICS_OPTIONs:
clear clear Tunnel List volume statistics
start turn on Tunnel List volume statistics
stop turn off Tunnel List volume statistics
state show Tunnel List volume statistics state
OPTIONs (mandatory arguments to long options are mandatory for short options too):
-b sort by total (encrypted+decrypted) bytes
-d sort by inbound (decrypted) bytes
-e sort by outbound (encrypted) bytes
-h display this help and exit
-i combine list rows per instance with accumulated traffic. Default order is descending by total bytes
-m sort by MSPI
-n sort by peer name
-p IP list tunnels only for peer with IP
-r reverse order while sorting
-s sort by SPI
-t combine list rows per peer with accumulated traffic. Default order is descending by total bytes
-v print a message for each provided OPTION after this one
-a off/on print only accelerated tunnels or only non-accelerated tunnels