Guest

Preview Tool

Cisco Bug: CSCvs48535 - %IPSEC-3-REPLAY_ERROR: + BFD down and drops IN_CD_COPROC_ANTI_REPLAY_FAIL

Last Modified

Jan 17, 2020

Products (1)

  • Cisco XE SD-WAN Routers

Known Affected Releases

cEdge-16.10.2

Description (partial)

Symptom:
Seeing anti replay errors on cedge:

*Dec 17 09:34:21.669: %IOSXE-3-PLATFORM: R0/0: cpp_cp: QFP:0.0 Thread:001 TS:00000006875715077384 %IPSEC-3-REPLAY_ERROR: IPSec SA receives anti-replay error, DP Handle 72, src_addr 10.1.4.1, dest_addr 0.0.0.0, SPI 0x0
*Dec 17 09:35:21.672: %IOSXE-3-PLATFORM: R0/0: cpp_cp: QFP:0.0 Thread:001 TS:00000006935715851761 %IPSEC-3-REPLAY_ERROR: IPSec SA receives anti-replay error, DP Handle 32, src_addr 10.1.4.1, dest_addr 0.0.0.0, SPI 0x0

BFD might go down as well but will recover after sometime.

cEdge-6-Dheeraj#sh sdwan bfd sessions | i down
192.168.1.6      200      down        gold             gold             10.1.6.1                        10.1.4.1                        12346       ipsec  7           1000           NA              4
192.168.1.6      200      down        mpls             gold             10.2.6.1                        10.1.4.1                        12346       ipsec  7           1000           NA              5

Conditions:
Transport flap on vedge running 18.4.4
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.