Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1422
Views
0
Helpful
3
Replies

%VPN_HW-1-PACKET_ERROR:

ittechk4u1
Level 4
Level 4

‎03-26-2017 10:51 PM - edited ‎03-05-2019 08:15 AM

Getting these error frequently.....

%VPN_HW-1-PACKET_ERROR: slot: 0 Packet Encryption/Decryption error, MAC Mismatch:srcadr=xxx.xxx.xxx.xxx,dstadr=yyy.yyy.yyy.yyy,size=92,sequence number=0x22F196,SPI=0xF228B568

%VPN_HW-1-PACKET_ERROR: slot: 0 Packet Encryption/Decryption error, Replay Failure:srcadr=xxx.xxx.xxx.xxx,dstadr=yyy.yyy.yyy.yy,size=1368,sequence number=0xA528F,SPI=0x8CCA9598

Can anyone suggest the solution.

Thanks

Labels:
0 Helpful
3 Replies 3

Philip D'Ath
VIP Alumni
VIP Alumni

‎03-27-2017 06:20 PM

With regard to the second error; this usually happens because you are getting packets out of order.  You can only get so many out of order, and then you get a replay error.  I would try expanding the window with:

crypto ipsec security-association replay window-size 256

http://www.cisco.com/c/en/us/td/docs/ios/sec_secure_connectivity/configuration/guide/convert/sec_ipsec_data_plane_15_1_book/sec_ipsec_antireplay.html

The first error could be related to the second.  It could also be a bug.  I would do the above change first, and if the issue happens again try changing to a gold star release of the IOS software.

0 Helpful

ittechk4u1
Level 4
Level 4
In response to Philip D'Ath

‎03-27-2017 10:29 PM

I will try and let you know.

Thanks

0 Helpful

ittechk4u1
Level 4
Level 4
In response to Philip D'Ath

‎03-29-2017 02:00 AM

Even after configuring this command I am getting the same errors as before..

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card