Is it possible to find out the local and remote identities associated with a specific phase 2 SPI for an IPsec encrypted VPN?
The output from 'vpn tu' is rather limited:
Enter IP of peer (format: xxx.xxx.xxx.xxx): 192.0.2.1
Peer 192.0.2.1 SAs:
1. SPI's related to IKE SA <7dc3f321cf09371c,bc0373ef85ca407e>: