Refer to the exhibit.
After setting the replay window size on your Cisco router, you received the given system
message. What is the reason for the message?
A.
The replay window size is set too low for the number of packets received.
B.
The IPSec anti-replay feature is enabled, but the window size feature is disabled.
C.
The IPSec anti-replay feature is disabled.
D.
The replay window size is set too high for the number of packets received.
Explanation:
If your replay window size has not been set to a number that is high enough for the
number of packets received, you will receive a system message such as the following:
*Nov 17 19:27:32.279: %CRYPTO-4-PKT_REPLAY_ERR: decrypt: replay check failed
connection id=1
The above message is generated when a received packet is judged to be outside the
anti-replay window.Reference: http://www.cisco.com/c/en/us/td/docs/iosxml/ios/sec_conn_dplane/configuration/12-4t/sec-ipsec-data-plane-12-4t-book/secipsec-antireplay.html