Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
651
Views
0
Helpful
2
Replies

Anti-replay window size

Go to solution
Ruterford
Level 1
Level 1

‎12-26-2013 07:26 AM

Hello,
We would like to increase the anti-replay window size on our ISR routers connected to ASR using DMVPN. On ISR I can use up to 1024, but ASR only limited to 512.
I am wondering if I can configure two different window sizes on ISRs - 1024 and ASR- 512, connected to each other via DMVPN, with no implications/problems. (I believe 512 should be enough for ASR side but ISR would need more).

Thanks!

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Marcin Latosiewicz
Cisco Employee
Cisco Employee

‎12-27-2013 02:30 AM

Yes you can have separate anit-replay windows sizes - the check is local and only done in inbound direction.

Now what you might want to remember is that enabling this feature will not imply existing connections will start using the new windows straight away.

View solution in original post

0 Helpful
2 Replies 2

Go to solution
Marcin Latosiewicz
Cisco Employee
Cisco Employee

‎12-27-2013 02:30 AM

Yes you can have separate anit-replay windows sizes - the check is local and only done in inbound direction.

Now what you might want to remember is that enabling this feature will not imply existing connections will start using the new windows straight away.

0 Helpful

Go to solution
Ruterford
Level 1
Level 1
In response to Marcin Latosiewicz

‎12-27-2013 08:41 AM

Thanks Marcin,

The SA will need to re-establish for anti-replay to kick in.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents