Home
Certification Preparation
Cisco
CCNA & CCENT
CCNA Security
ERR message with site 2 site VPN
blackninja
VPN is set up and traffic is crossing fine.
I get this error message, about one a minute, when the VPN is in use - using continuous ping's as traffic.
Error message:
05:42:54: %CRYPTO-4-RECVD_PKT_MAC_ERR: decrypt: mac verify failed for connection id=2001 local=10.0.0.2 remote=10.0.0.1 spi=0300291F seqno=00000C25
Cisco's web site states:
CRYPTO-4-RECVD_PKT_MAC_ERR : decrypt: mac verify failed for connection
id=[dec]
Explanation The MAC verify processing failed. This may be caused by
the use of the wrong key by either party during the MAC calculations.
This activity could be considered a hostile event.
Recommended Action Contact the peer administrator.
Found this error message in a few bugs on Cisco's bug tracker. One
workaround, to disable fast switching (no ip route-cache) which seems not to have worked for me.
As it's passing traffic, keys match - so anybody any ideas?
IOS used:
R1 - C2600-ADVSECURITYK9-M, Version 12.4(23) - 2620XM 32/128
R2 - C1700-K9O3SY7-M, Version 12.3(23) - 1751 32/64
Find more posts tagged with
Comments
blackninja
Any ideas - it's driving me nuts filling the console with the err message.
It only appears on the 2620XM, if this helps.
notgoing2fail
So one of the routers thinks the MAC address is false from the other router?
blackninja
I have no idea, and nor does anybody here by the looks of it.
I think I'll double post it into the CCSP section tomorrow.
wastedtime
why not post configs and network diagram?
Quick Links
All Categories
Recent Posts
Activity
Unanswered
Groups
Best Of
