Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
728
Views
0
Helpful
2
Replies

Pix VPN Debug

jcher74
Level 1
Level 1

‎10-07-2005 08:05 AM - edited ‎02-21-2020 02:01 PM

I have a site to site vpn between a pix firewall and a sonicwall firewall. I am receiving this message on the pix:

IPSEC(sw_esp_decap): fail antireplay check

IPSEC(cipher_ipsec_request): decap failed for x.x.x.x -> x.x.x.x

Does anyone know what this means? Thanks for the help.

Labels:
0 Helpful
2 Replies 2

vkapoor5
Level 5
Level 5

‎10-13-2005 08:13 AM

It appears to be a IPSec policy mismatch between the two firewalls. IPSec on PIX firewalls support "anti-replay" services if IKE is enabled on the PIX. I would suggest you to verify if the remote end supports this feature.

0 Helpful

tyagivijay
Level 1
Level 1

‎10-13-2005 11:48 PM

Hello ,

It seems u have enabled PFS on one PIX & haven't enabled on other Unit.

Either enable on both end or disable PFS on both end.

0 Helpful
Customers Also Viewed These Support Documents