Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2819
Views
0
Helpful
2
Replies

Problema con %IPSEC-3-REPLAY_ERROR:

fernandotlm10
Level 1
Level 1

‎07-31-2017 05:21 PM - edited ‎02-21-2020 09:23 PM

Buen día,

Tengo un router  ASR1000 Software (X86_64_LINUX_IOSD-UNIVERSALK9-M), Version 15.4(3)S2, RELEASE SOFTWARE (fc3), el cual tiene configurados tuneles GRE con las sedes. El día de hoy algunos tuneles se cayeron un momento y al revisar los logs, encontre el siguiente aviso:  %IOSXE-3-PLATFORM: SIP0: cpp_cp: QFP:0.0 Thread:028 TS:00045790685249757470 %IPSEC-3-REPLAY_ERROR: IPSec SA receives anti-replay error, DP Handle 472, src_addr 10.11.251.94, dest_addr 10.11.255.2, SPI 0xc41830fb. El tamaño de la ventana es de 1024 según las recomendaciones del fabricante (crypto ipsec security-association replay window-size 1024). El tema es  que aún no tengo claridad de que significa ese log y por que me tumba los tuneles. Agradezco su colaboración con este tema. Mil gracias.

Labels:
0 Helpful
2 Replies 2

Dinesh Moudgil
Cisco Employee
Cisco Employee

‎07-31-2017 05:43 PM

Hi

Here is a document for your reference:-
http://www.cisco.com/c/en/us/support/docs/ip/internet-key-exchange-ike/116858-problem-replay-00.html

Regards
Dinesh Moudgil

P.S. Please rate helpful posts.

Cisco Network Security Channel - https://www.youtube.com/c/CiscoNetSec/
0 Helpful

fernandotlm10
Level 1
Level 1
In response to Dinesh Moudgil

‎08-02-2017 07:07 AM

Hi, 

Thanks a lot by the document, it help me to undestand the problem. 

Best Regards.

0 Helpful
Customers Also Viewed These Support Documents