Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

The Cisco IOS Firewall with VPN Tunnel drops tcp packets and the "Invalid Segment tcp" error message appears

Core issue

This issue occurs due to the presence of Cisco bug ID CSCsg37315.

This issue occurs when VPN tunnels are configured on the router in conjunction with Context-Based Access Control (CBAC).

When this issue occurs, the Invalid Segment tcp error message appears.


For a workaround:

Disable the hardware encryption on the router with the no crypto engine accelerator command.

Version history
Revision #:
1 of 1
Last update:
‎06-22-2009 05:31 PM
Updated by:
Labels (1)