Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
351
Views
0
Helpful
1
Replies

ASA-4-402117: IPSEC: Received a non-IPSec packet (protocol= TCP) from

DraganSkundric87318
Level 1
Level 1

‎11-25-2024 06:39 AM

hi,

on ASAa FW I have zone with two interfaces, one ancrypted and one not. Besause of some routing problems traffic was coming on nonencrypted interface while ASA expected it on encrypted one. As a result I got following syslog

 

%ASA-4-402117: IPSEC: Received a non-IPSec packet (protocol= TCP) from IP_SRC to IP_DEST

Does this message means ASA dropped this traffic from IP_SRC to IP_DEST or let it through? ACL on zone is same for both interfaces

 

Thanks

 

br

Labels:
0 Helpful
1 Reply 1

MHM Cisco World
VIP
VIP

‎11-25-2024 06:44 AM - edited ‎11-25-2024 07:01 AM

this meaning peer send encrypt packet not your ASA

check peer

For drop since traffic is tcp then it likely to be drop unless you use tcp bypass in asa.

MHM

0 Helpful
Customers Also Viewed These Support Documents