I’ve started seeing these messages recently:
openvpn[2688]: latens.example.org/10.99.36.17:60467 Authenticate/Decrypt packet error: bad packet ID (may be a replay): [ #999 ] — see the man page entry for –no-replay and –replay-window for more info or silence this warning with –mute-replay-warnings
After reading the man page, I decided to add the following and restart openvpn:
replay-window 64 20
We’ll see….
FYI, I recently added the same thing to the client. The original message is on the client. But I added the configuration item to the server.