Need help understanding IPSEC Packet errors running in a GDOI environment.
Everything runs fine for hours (random # of hours) and then we receive the following errors;
(ip) vrf/dest_addr= /220.127.116.11, src_addr= 18.104.22.168, prot= 50 Dec 21 05:34:09 EST: %CRYPTO-4-RECVD_PKT_NOT_IPSEC: Rec'd packet not an IPSEC pa
Each time this happened, it took a CLEAR CRYPTO GDOI to get traffic going again.
It doesn't appear to be anything related to Rekeying and it's confusing because the Prot reported in the message is 50 (ESP) - so it appears that traffic is still being sent encrypted.
We are using VPN Hardware accelaration ( AIM-VPN/SSL-3) and I don't see any errors there.
I'm not certain where to look next - any help out there?