Knowledge

ERROR_IPSEC_DOSP_KEYMOD_NOT_ALLOWED - 13930 (0x366A)

IPsec DoS Protection received an IPsec negotiation packet for a keying module which is not allowed by policy.

Updated: Feb 21, 2026

Technical Meaning

This error code indicates that the IPsec DoS Protection subsystem encountered a situation where an IPsec negotiation packet was received for a keying module that is not permitted by the current policy settings.

Error Details

The IPsec DoS Protection component of Windows is designed to prevent denial-of-service attacks through IPsec. When it receives an IPsec negotiation packet, it checks whether the requested keying module is allowed according to the configured security policies. If the keying module is not permitted, this error code is generated.

Usage Context

This error typically occurs during the processing of IPsec negotiation packets by the IPsec DoS Protection subsystem. It can be encountered in scenarios where an attempt is made to establish or modify a secure connection using IPsec, but the requested keying module does not conform to the security policies defined for the system.

Developer Interpretation

Developers should interpret this error as indicating that the specified keying module is not authorized by the current policy settings. This could be due to misconfiguration of the security policies or an attempt to use a keying module that is not supported in the current environment. Developers may need to adjust their configuration or ensure that the correct keying modules are being used.

Related Errors

  • ERROR_IPSEC_DOSP_KEYMOD_NOT_FOUND (13928)
  • ERROR_IPSEC_DOSP_NEGOTIATION_FAILED (13934)

FAQ

Q: What does this error mean?

A: This error indicates that an IPsec negotiation packet was received for a keying module not allowed by the current policy.

Q: How can I resolve this issue?

A: Review and adjust your security policies to ensure they allow the necessary keying modules. Ensure that the correct configuration is applied and that all components are up-to-date.

Summary

The ERROR_IPSEC_DOSP_KEYMOD_NOT_ALLOWED error signifies that an IPsec negotiation packet was received for a keying module not permitted by policy. Developers should review their security policies and ensure they align with the requirements of their network environment.