Menu
What's new
By:
Filters Better Search

AEAD Decrypt error: bad packet ID

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

Jonnny

Jonnny

Occasional Visitor
Hi,

Using VPN Director to redirect a device (IP), through a VPN Client (OpenVPN), the following error appears using torrent traffic:

Code: 
Jun 23 10:05:32 ovpn-client1[16663]: AEAD Decrypt error: bad packet ID (may be a replay): [ #10543379 ] -- see the man page entry for --no-replay and --replay-window for more info or silence this warning with --mute-replay-warnings

If using the Wireguard client, this error no longer appears.

I remember, in the past to configure the OpenVPN Server (not client), on the router, I had to set it to TCP protocol so that a similar error does not appear when viewing streaming channels.

In some research I did, it is mentioned that it could be the UDP/TCP protocol, MTU value, OpenVPN client configuration...

Has anyone experienced this error?

Thanks.
 
Jonnny said:
Hi,

Using VPN Director to redirect a device (IP), through a VPN Client (OpenVPN), the following error appears using torrent traffic:

Code: 
Jun 23 10:05:32 ovpn-client1[16663]: AEAD Decrypt error: bad packet ID (may be a replay): [ #10543379 ] -- see the man page entry for --no-replay and --replay-window for more info or silence this warning with --mute-replay-warnings

If using the Wireguard client, this error no longer appears.

I remember, in the past to configure the OpenVPN Server (not client), on the router, I had to set it to TCP protocol so that a similar error does not appear when viewing streaming channels.

In some research I did, it is mentioned that it could be the UDP/TCP protocol, MTU value, OpenVPN client configuration...

Has anyone experienced this error?

Thanks.
Click to expand...

Honestly very little familiarity with OVPN but if you're using UDP, retransmissions are common and I'm wondering if that is what it means by "replay".

I believe the default OpenVPN config assumes you have 1500 MTU on the WAN, is that the case with your ISP? If not it could be fragmentation but that doesn't seem to line up with that log message.

If you have the option of using wireguard, why don't you use that? It is much lighter weight and more efficient.
 
I've tried changing the MTU value but to no effect.

The times I tried Wireguard Client/Server, I switched back to OpenVPN. A big drawback for me on the Wireguard Client, it only allows one session at same time unlike OpenVPN.

Thanks.
 
The AEAD error is not an error as such. It's just a message saying it's happening - a non-error. Also it's unrelated to MTU.
I run my own VPN on a vps and have found that adding
Code: 
mute-replay-warnings
to the client's custom configuration, as the log is advising would mute the AEAD messages.
 
Last edited:
You must log in or register to reply here.

Similar threads

Stardust
OpenVPN replay warning with NordVPN
Replies
2
Views
2K
Stardust
Stardust
F
NordVPN with Asus 88XU Pro UDP connection bandwidth limit when using Geforce now
Replies
0
Views
314
flopeh
F
G
VPN server Authenticate/decrypt errors
Replies
10
Views
1K
ColinTaylor
C
Stardust
Decrypt error
Replies
0
Views
512
Stardust
Stardust
P
OVPN Problem. Asus rt ax56u (latest merlin firmware
Replies
9
Views
1K
pattox
P
Similar threads
Thread starter Title Forum Replies Date
Don Draper DDNS Status: Server Error/Inactive Asuswrt-Merlin 11
G ddns request error, please try again Asuswrt-Merlin 6
P Error compiling for AX58U: cannot find crt1.o crti.o crtbegin.o Asuswrt-Merlin 4
L Openvpn internal error add route Asuswrt-Merlin 0
BeKozGaming [RT-AC88U][386.12_4] "backup_jffs.tar Failed - Virus detected" Error saving JFFS partition: Trojan:Script/Wacatac.B!ml Asuswrt-Merlin 11
M merlin 386.1, ovpn client 3.4.1, "error:0A00018E:SSLroutines::ca mtd too week [ERR]" Asuswrt-Merlin 3
Viktor Jaep wlcsm_create_nl_socket binding netlink socket error Asuswrt-Merlin 21
J Error code on system long Asuswrt-Merlin 7
Tireless Hyena Aiprotection and "potentially unexpected fatal signal 6" error Asuswrt-Merlin 1
D Receiving an error of port going up and down Asuswrt-Merlin 2

Similar threads

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 986 (members: 33, guests: 953)
Top