Cisco ASA Interim Release Notes
The software images listed below are Interim releases. They contain bug fixes which address specific issues found since the last Feature or Maintenance release. The images are fully supported by Cisco TAC and will remain on the download site only until the next Maintenance release is available. If you do not have a specific problem which is resolved by an Interim release, we recommend that you use the Feature or Maintenance release images.
Important: These images were not fully regression tested. Each individual fix was unit tested, and the image has had a limited amount of automated regression testing to confirm a baseline of functionality. Keep this testing status in mind if you decide to run them in a production environment. We strongly encourage you to upgrade to a fully tested Maintenance or Feature release when it becomes available.
Revision:
Version 9.4(4)37 – 07/10/2019
Files:
asa944-37-smp-k8.bin
Defects resolved since 9.4(4)36:
ASA traceback on slave/standby during sync config due to
OSPF/EIGRP and IPv6 used together in ACE |
Revision: Version 9.4(4)36 – 05/10/2019
Files: asa944-36-smp-k8.bin
Defects resolved since 9.4(4)34:
ASDM launcher download not working on Safari browser |
|
HTTP with ipv6 using w3m is failing |
|
ASA 5506/5508/5516 traceback in Thread Name octnic_hm_thread |
Revision:
Version 9.4(4)34 – 03/29/2019
Files:
asa944-34-smp-k8.bin
Defects resolved since 9.4(4)32:
HTTP with ipv6 using w3m is failing |
Caution: If you are using CSM, and you upgrade to ASA Version 9.4(4)34
or later, then you must upgrade CSM to Version 4.19 or later. Earlier versions
of CSM are not compatible.
Revision: Version 9.4(4)32 – 03/13/2019
Files: asa944-32-smp-k8.bin
Defects resolved since 9.4(4)28:
ASA is getting traceback with reboot only on Spyker aftr shutdown SFR module |
|
Cisco Adaptive Security Appliance Software Privilege Escalation Vulnerability |
|
traceback on inspect_process |
|
Smart Tunnel bookmarks don't work after upgrade giving certificate error |
Revision: Version 9.4(4)28 – 12/19/2018
Files: asa944-28-smp-k8.bin
Defects resolved since 9.4(4)27:
PIX-ASA rest-api unauthorized access. |
Revision: Version 9.4(4)28 – 11/19/2018
Files: asa944-28-smp-k8.bin
Defects resolved since 9.4(4)27:
RDP session does not establish after changing SSL certificate on ASA. |
|
Stuck uauth entry rejects AnyConnect user connections |
|
The CPU profiler stops running without having hit the threshold and without collecting any samples. |
|
Unable to modify access control license entry with log default command |
|
ASA traceback on ASA5516 during boot due to "out of stack memory" prior to disk initialization |
|
Cisco Adaptive Security Appliance Traffic Flow Confidentiality Denial of Service Vulnerability |
Revision: Version 9.4(4)27 – 11/06/2018
Files: asa944-27-smp-k8.bin
Defects resolved since 9.4(4)25:
Cisco Adaptive Security Appliance Software and FTD Software Denial of Service Vulnerability |
Revision: Version 9.4(4)25 – 10/17/2018
Files: asa944-25-smp-k8.bin
Defects resolved since 9.4(4)24:
Need to update Smart Call Home built-in CA certificate for tools.cisco.com |
Revision: Version 9.4(4)24 – 10/05/2018
Files: asa944-24-smp-k8.bin
Defects resolved since 9.4(4)22:
_lina_assert in createFoverInterface when configuring failover |
|
ASA boot loop caused by logs sent after FIPS boot test |
|
IPV4: Implementing buffered reliability mechanism for routing updates |
|
ASA 9.4.4.8, SNMP causing slow memory leak |
|
ASA 9.8.2 Receiving syslog 321006 reporting System Memory as 101% |
|
ASA SIP and Skinny sessions drop, when two subsequent failovers take place |
|
FTD does not send Marker for End-of-RIB after a BGP Graceful Restart |
|
mac address is flapping on huasan switch when asa etherchannel is configued with active mode |
|
ASA unable to handle Chunked Transfer-encoding returned in HTTP response pages in Clientless WebVPN |
|
Clientless webvpn fails when ASA sends HTTP as a message-body |
|
Cisco Adaptive Security Appliance WebVPN - VPN not connecting through Browser |
Revision: Version 9.4(4)22 – 08/22/2018
Files: asa944-22-smp-k8.bin
Defects resolved since 9.4(4)20:
mac-address auto command uses default prefix of 1 on ASA5585-X |
|
Javascript elements rewriter issue |
|
Cisco Adaptive Security Appliance Clientless SSL VPN Cross-Site Scripting Vulnerability |
|
DHCP Relay With Dual ISP and Backup IPSEC Tunnels Causes Flapping |
|
ASA fails to encrypt after performing IPv6 to IPv4 NAT translation |
|
Traceback and reload with 'show tech' on ASA with No Payload Encryption (NPE) |
|
PKI:- ASA fails to process CRL's with error "Add CA req to pool failed. Pool full." |
|
ASA 9.6(4): WebVPN page not loading correctly |
|
To-the-box traffic being routing out a data interface when failover is transitioning on a New Active |
|
CWE-20: Improper Input Validation |
|
Static IPv6 route prefix will be removed from the ASA configuration |
|
webvpn-l7-rewriter: Bookmark logout fails on IE |
|
WebPage is not loading due to client rewriter issue on JS files |
|
ASA 5525 running 9.8.2.20 memory exhaustion. |
|
ASA Traceback and reload when executing show process (rip: inet_ntop6) |
|
Enabling compression necessary to load ASA SSLVPN login page customization |
|
Certificate import from Local CA fails due to invalid Content-Encoding |
|
FTD 6.2.3: Low DMA memory leading to VPN failures due to incorrect crypto maps |
Revision: Version 9.4(4)20 – 06/19/2018
Files: asa944-20-smp-k8.bin
Defects resolved since 9.4(4)18:
Stale VPN Context entries cause ASA to stop encrypting traffic despite fix for CSCup37416 |
|
OSPF continuously flaps after master change (L2 cluster, multi-ctx) |
|
ASA unable to remove ACE with 'log disable' option |
|
Stale VPN Context issue seen in 9.1 code despite fix for CSCvb29688 |
|
ASA: Traceback by Thread Name idfw_proc |
|
FORWARD PORT: 1550/2048/9344 byte memory block depletion due to identity UDP traffic |
|
ASA watchdog traceback during context modification/configuration sync |
|
FQDN object are getting resolved after removing access-group configuration |
|
upgrade of ASA5500 series firewalls results in boot loop (not able to get past ROMMON) |
|
RADIUS authentication/authorization fails for ASDM |
|
CWS redirection on ASA doesn't treat SSL Client Hello retransmission properly in specific condition |
|
IKEv1 RRI : With Answer-only Reverse Route gets deleted during Phase 1 rekey |
|
ASA HA with IPv6: IPv6 static/connected routes are not sync/replicated between Active/Standby pairs. |
|
Not able to do snmpwalk when snmpv1&2c host group configured. |
|
IKEv1 RRI : With Originate-only Reverse Route gets deleted during Phase 1 rekey |
|
ASA:netsnmp:Snmpwalk is failed on some group of IPs of a host-group. |
|
ASA generate traceback in DATAPATH thread |
|
Blade kernel crash on FPR4140 |
|
ASA not matching IPv6 traffic correctly in ACL with "any" keyword configured |
|
ASA PKI OCSP failing - CRYPTO_PKI: failed to decode OCSP response data. |
|
ASA - zonelabs-integrity : Traceback and High CPU due to Process 'Integrity FW task' |
|
FPR-ASA : Device sends only ID certificate in SSL server certificate packet after reload |
|
ASA memory Leak - snp_svc_insert_dtls_session |
Revision: Version 9.4(4)18 – 04/20/2018
Files: asa944-18-smp-k8.bin
Defects resolved since 9.4(4)17:
9.7.1 traceback in snp_fp_qos |
|
ASA: traceback in DATAPATH-2-1157 |
|
ASA Portal Java plug-ins fail with the latest Java updates |
|
ASA crash with snp_egress_capture_sgt() |
|
ASA traceback due to deadlock between DATAPATH and webvpn processes |
|
SSL handshake fails with large certificate chain size |
|
ASA:OpenSSL Vulnerabilities CVE-2017-3737 and CVE-2017-3738 |
|
ASDM stops working with hostscan enabled. ASDM works with hostscan disabled. |
|
ASA - ICMP flow drops with "no-adjacency" on interface configured in zone when inspection enabled |
|
ASA traceback with thread name "idfw_proc " |
|
traceback related to SIP inspection processing |
|
ASA Traceback in Thread Name: Unicorn Proxy Thread |
|
ASA traceback with Thread Name: fover_parse |
|
ASA sending DHCP decline | not assiging address to AC clients via DHCP |
|
Standby ASA traceback during replication from mate 9.2(4)27 |
|
webvpn: multiple rendering issues on Confluence and Jira applications |
|
ASA: Traceback in Thread Name UserFromCert |
|
ASA 9.7.1.15 Traceback while releasing a vpn context spin lock |
|
WebVPN rewriter: drop down menu doesn't work in BMC Remedy |
|
ASA Cut-Through Proxy allowing user to access website, but displaying "authentication failed" |
|
Memory leak on webvpn |
Revision: Version 9.4(4)17 – 02/13/2018
Files: asa944-17-smp-k8.bin
Defects resolved since 9.4(4)16:
ASA using TACACS authentication and configured 'password-policy lifetime' will deny access |
|
ASA Traceback on Kenton in Thread Name: CTM message handler |
|
ASA fails to rejoin the failover HA Or a cluster with insufficient memory error, OGS enabled |
|
ASA reports incorrectly double input packets traffic on PPPoe/VPDN interface |
|
ASA backs out of connection when it receives Server Key exchange with named curve as x25519 |
|
Split brain after recovery from interface failure when fover and then data ifc goes down in order. |
|
Memory Leaking on ASA with vpnfol_memory_allocate and vpnfol_data_dyn_string_allocator |
|
SSPs with ASA in multiple context moves in active-active situation while failover is occurring |
|
ASA - Traceback in thread name SSH while applying BGP show commands |
|
Memory leak in idfw component on ASA |
Revision: Version 9.4(4)16 – 02/03/2018
Files: asa944-16-smp-k8.bin
Defects resolved since 9.4(4)14:
Cisco Adaptive Security Appliance Denial of Service Vulnerability |
|
Memory leak in IKE for aggregate-auth |
Revision: Version 9.4(4)14 – 12/07/2017
Files: asa944-14-smp-k8.bin
Defects resolved since 9.4(4)13:
In security context, cannot generate the SNMP events trap. |
|
ASA traceback when trying to remove configured capture |
|
ASA Memory depletion due to scansafe inspection |
|
Ports not getting reserved on ASA after adding snmp configuration. |
|
ASA cluster intermittently drop IP fragments when NAT is involved |
|
ASA getting stuck in hung state because of STATIC NAT configuration for SNMP ports |
|
http-server component of ASA is not closing connections |
|
Cisco Adaptive Security Appliance Remote Code Execution and Denial of Service Vulnerability |
|
CSCvg40155 |
Cisco ASA Virtual Private Network SSL Client Certificate Bypass Vulnerability |
High CPU in IKE Daemon causing slow convergence of VPN tunnels in a scaled environment |
|
dir /recursive cache:/stc and "dir cache:stc/2/" list AnyConnect.xsd differently on ASA9.8.2 |
|
Modifying service object-groups (add and remove objects) removes ACE |
Revision: Version 9.4(4)13 – 10/26/2017
Files: asa944-13-smp-k8.bin
Defects resolved since 9.4(4)12:
Resolve any vulnerabilities in ASA/FTD lina Heimdal Kerberos code |
|
ASA traceback in thread name fover_health_monitoring_thread |
|
ASA 9.1(7)9 Traceback with %ASA-1-199010 and %ASA-1-716528 syslog messages |
|
VTI - Some sessions do not get cleared from vpn-sessiondb |
|
ASA Traceback when saving/viewing the configuration due to time-range ACLs |
|
Cisco Adaptive Security Appliance TLS Denial of Service Vulnerability |
|
Cisco Adaptive Security Appliance TLS Denial of Service Vulnerability |
|
Cisco Adaptive Security Appliance TLS Denial of Service Vulnerability |
|
All 1700 "4 byte blocks" were depleted after a weekend VPN load test. |
|
ENH: Unique IPv6 link-local addresses assigned when sub-interface is being created |
|
ASA memory leak - DTLS sessions |
|
ASA not sending register stop when mroute is configured |
|
Install 6.2.2-1290 sfr on a ASA with firepower - asa cores |
|
OSPF route not getting installed on peer devices when an ASA failover happens with NSF enabled |
|
ASA 9.x: DNS inspection appending "0" on PTR query |
|
ASA drops the IGMP Report packet which has Source IP address 0.0.0.0 |
|
Cisco Adaptive Security Appliance Flow Creation Denial of Service Vulnerability |
|
'Incomplete command' error with some inspects due to K7 license |
|
Slave kicked out due to CCL link failure and rejoins, but loses v3 user in multiple context mode |
|
ASA on FP 2100 traceback when uploading AnyConnect image via ASDM |
|
ASA : After upgrading from 9.2(4) to 9.2(4)18 serial connection hangs |
|
traceback with Show OSPF Database Commands |
Revision: Version 9.4(4)12 – 09/18/2017
Files: asa944-12-smp-k8.bin
Defects resolved since 9.4(4)10:
ASA Traceback in thread SSH when ran "show service set conn detail" |
|
ASA traceback in Thread Name:ci/console while running show ospf commands |
|
asa Rest-api - component monitoring - empty value/blank value |
|
Routes do not sync properly between different minor versions during hitless upgrade |
|
ASA Exports ECDSA as corrupted PKCS12 |
|
ASA memory leak - DTLS sessions |
|
ASA not sending register stop when mroute is configured |
|
ASA Connections stuck in idle state with DCD enabled |
|
TLS version 1.1 connection failed no shared signature algorithms@t1_lib.c:3106 |
|
ASA - 80 Byte memory block depletion |
|
Traceback in thread DATAPATH due to NAT |
Revision: Version 9.4(4)10 – 08/24/2017
Files: asa944-10-smp-k8.bin
Defects resolved since 9.4(4)8:
print the thread name for non-crashing threads in crash info |
|
FSCK Files created and stored in flash with incorrect timestamp of Jan 01 1980 03:00:00 |
|
ASA: IKEv2 ipsec-proposal command removed if more than 9 proposals configured in single command |
|
ASA TCP SIP inspection translation not working when IP phone is behind VPN tunnel |
|
ASA Issue with bgp route summarization(auto-summary)and route advertisement |
|
ASA: Active FTP not working with extended keyword in NAT. |
|
ASA traceback observed in datapath |
|
Calls not working with CUCI Lync version 11.6.3 on ASA |
|
ASA does not install routes learned via OSPF over IPSec using UDP/4500 |
|
FTD Diagnostic Interface does Proxy ARP for br1 management subnet |
|
OSPF Rogue LSA with maximum sequence number vulnerability |
|
vpn vlan mapping issue |
|
ASA Cluster : Potential UDP loop on cluster link with PAT pool |
|
ASASM: Interface vlans going to admin down after reload. |
|
IPsec SA fail to come up and flap with more than 1000 IPsec SA count in ASA5506/5508/5516 |
|
Traceback in Unicorn Proxy Thread due to Webvpn |
|
ASA/ 9.6.3 // WebVPN Smart tunnel works but floods windows with event viewer |
|
Traceback on ASA with Firepower Services during NAT rule changes and packet capture enabled |
|
Evaluation for the vulnerabilities CVE-2017-1000364 and CVE-2017-1000366 |
|
Regex is not matching for HTTP argument field |
|
ASA - Crypto accelerator traceback in a loop |
|
ASA-5-720012:(VPN-Secondary)Failed to update IPSec failover runtime data in ASA cluster environment |
|
Ikev2 Remote Access client sessions stuck in Delete state |
|
ASA5585 traceback in DATAPATH - snp_vpn_process_natt_pkt |
|
EC Certificates that are imported to the ASA in PKCS12s cannot be used for SSL |
|
traceback in watchdog process |
Revision: Version 9.4(4)8 – 07/17/2017
Files: asa944-8-smp-k8.bin
Defects resolved since 9.4(4)6:
FTP data conn scaling fails with dynamic PAT |
|
Evaluation of pix-asa for OpenSSL May 2016 |
|
ASA dropping packets with "novalid adjacency" though valid ARP entry avail |
|
9.7.1 traceback in snp_fp_qos |
|
EZVPN NEM client can't reconnect after "no vpnclient enable" is entered |
|
Implement detection and auto-fix capability for scheduler corruption problems |
|
ASA 1550 block gradual depletion |
|
gzip compression not working via Webvpn |
|
ASA does not respond to IPv6 MLD Query. |
|
Traceback in thread name DATAPATH |
|
ASA traceback in Thread name: idfw_proc on running "show access-list", while displaying remark |
|
Web folder filebrowser applet code signing certificate expired |
|
ASA All contexts use the same EIGRP router-ID upon a reload |
|
Traceback in Thread Name: Unicorn Admin Handler |
|
ASA: slow memory leak when using many DNS queries |
|
ASA local dns resolution fails when dns server is reachable through a site to site ipsec tunnel |
|
ASA traceback in Thread Name: fover_parse performing upgrade from 9.1.5 to 9.4.3 |
|
ASA traceback observed in Datapath due to SIP inspection |
|
ASA Traceback in Unicorn Proxy Thread |
|
SFR Backplane is pulling the public address for policy match instead of ASA inside address |
|
Slave should have use CCL to forward traffic instead of blackholing when egress interface is down |
|
Show Crypto Acclerator shows status as booting for hardware devices |
|
Dist-S2S: tunnels stay up even after passing vpn idle timeout in Multimode |
|
In multi-context ASA drops traffic sourced from certain ports when interface PAT is used |
|
Upgrading the ASA results in No Valid adjacency due to track configure on the route |
|
Standby ASA not learning routes via RIP |
|
ASA: Multicast packets getting dropped starting code 9.6.3 |
|
ASA SNI connection fails after upgrade - no shared cipher |
|
ICMP Unreachables (PMTU) dropped indicating "Routing failed to locate next hop" |
|
Auto-RP packet is dropped due to no-route - No route to host |
|
ASA may traceback on displaying access-list config or saving running config |
|
network_udpmod_get not releasing shr_lock in rare error case |
|
ASA: IPv6 protocol X rule for passing through FW is dropping packets with Invalid IP length message |
|
CPU hog in CP Processing thread due to huge number of sunrpc sessions |
|
ASA- Traceback in 'Thread Name : Datapath' on crypto_SSL functions |
|
Memory leak at location "snp_fp_encrypt" when syslog server is reachable over the VPN tunnel |
|
ASA traceback on websns_rcv_tcp |
|
Cisco Adaptive Security Appliance HREF Cross Site Scripting Vulnerability |
Revision: Version 9.4(4)6 – 05/05/2017
Files: asa944-6-smp-k8.bin
Defects resolved since 9.4(4)5:
ASA block new conns with logging permit-hostdown & TCP syslog is down |
|
ASA should not load-balance same flow traffic over port-channel CCL |
|
OSPF multicast filter rules missing in cluster slave |
|
Traceback on thread name IKE Daemon at mqc_enable_qos_for_tunnel |
|
CEP records edit page take minutes to load |
|
CTP after failed attempt sends the domain along with the username |
|
Port Forwarding Session times out due to vpn-idle-timeout in group-policy while passing data |
|
ASA drops web traffic when IM inspection is enabled. |
|
Access-lists not being matched for a newly created object-group |
|
Traceback when trying to save/view access-list with giant object groups (display_hole_og) |
|
RT#687120: Bookmark Issue with clientless VPN - SAML |
|
Firepower (SFR) module data plane down after reload of module |
|
ASA: TLS-proxy - Traceback with thread name - Dispatch Unit |
|
ASA in cluster results in incorrect user group mappings between the Master and Slave |
|
Traceback in Thread Name: dhcp_daemon |
|
%ASA-3-216001: internal error in ci_cons_shell: thread data misuse |
|
DCERPC inspection drops packets and breaks communication |
|
Cisco Adaptive Security Appliance Authentication Denial of Service Vulnerability |
|
ASA traceback in Thread Name: accept/http when ASDM is displaying Access Rules |
|
ASA May crash when changing a NAT related object to fqdn |
|
Error deploying ASAv on ESXi vCenter 6.5 |
|
ASA policy-map configuration is not replicated to cluster slave |
|
The interactive icons on internal bookmark site not showing properly (+CSCO+0undefined) |
|
ASA may drop DNS reply containing only additional RR of type TXT |
|
ASA reloaded while joining cluster and active as slave |
Revision: Version 9.4(4)5 – 04/03/2017
Files: asa944-5-smp-k8.bin
Defects resolved since 9.4(4)2:
incorrect failover status for contexts via SNMP |
|
ASA matches incorrect ACL with object-group-search enabled |
|
ASA: IPSec SA failed to come up |
|
ASA incorrectly processing negative numbers in wrappers, resulting in graphical webvpn issue |
|
SIP: 200 OK messages with multiple seqments not reassembled correctly |
|
ASA does not respond to IPv6 MLD Query. |
|
ASA traceback and Reload on Config Sync Failure |
|
1550-byte block depletion seen due to Radius Accounting packets |
|
L2TP connects only sometimes when DHCP used |
|
ASA-FP9300 Crashed in thread name IPSEC MESSAGE HANDLER after upgrade |
|
Slow Memory leak in ASA |
|
5585 does not unbundle its data intfs for 30 seconds after leaving cluste |
|
Cannot delete port-object once created under the Service object group in ASA 944 |
|
ASA may traceback when copying capture out using tftp |
|
ASA may traceback while loading a large context config during bootup |
|
ASA: PBR Memory leak for ICMP traffic |
|
Cluster C-Hash table is updated with one more unit despite the new unit didn't join the setup |
|
ARP functions fail after 213 days of uptime, drop with error 'punt-rate-limit-exceeded' |
Revision: Version 9.4(4)2 – 02/20/2017
Files: asa944-2-smp-k8.bin
Defects resolved since 9.4(4):
ASA: Auth failures for SNMPv3 polling after unit rejoins cluster |
|
ASA - TO the box traffic break due to int. missing in asp table routing |
|
CWS redirection on ASA may corrupt sequence numbers with https traffic |
|
ASA: Protocol and Status showing UP without connecting the interface |
|
USGv6 Cert: Non-RH0 Packets Being Dropped w/Valid Policy-Map |
|
ASA: SIP Call Drops with PAT when same media port used in multiple calls |
|
Traceback on CP Process with H323 inspection, rip h323_service_early_msg |
|
SCTP MH:pin hole removed and added freq on standby with dual nat |
|
ICMP error packets in response to reply packets are dropped |
|
ASA 5585-60 dropping out of cluster with traceback |
|
971 EST - Console hang on show capture |
|
ASA Page fault traceback in Thread Name: DATAPATH |
|
ASA Traceback in Checkheaps Thread |
|
ASA traceback observed on auto-update thread. |
|
viewer_dart.js file not loading correctly |
|
4GE-SSM RJ45 interface may drop traffic due to interface "rate limit drops" |
|
Failed to ssh management interface after failover and plug-in/out |
|
ASA drops DNS PTR Reply with reason Label length exceeded during rewrite |
|
ASA SIP inspection may delay transmission of 200 OK when embedded with NOTIFY |
|
ASA : memory leak due to ikev2 |
|
ASA cluster TCP/SSL ports are not displayed on LISTEN state |
|
ASA Kenton: DSCP Markings Not Copied to Outer IP Header With IPsec Encapsulation |
|
ASAv traceback randomly |
|
9.6.2 - Traceback during AnyConnect IKEv2 Performance Test |
|
ASA multicontext disallowing new conns with TCP syslog unreachable and logging permit-hostdown set |
|
ASA traceback at Thread Name: sch_syslog |
|
DSCP Markings Not Copied to Outer IP Header With IPsec Encapsulation |
|
Error synchronizing the SNMPv3 user after rebooting a cluster unit |
|
ASA memory leak in CloneOctetString when using SNMP polling |
|
Implement speed improvements for ACL and NAT table compilation |
|
ASA traceback in Thread Name: ssh, rip igb_disable_rx_queues after no shutdown of interface |
|
SSL connection hangs between ASA and backend server in clientless WebVPN |
|
ASA with FirePOWER module generates traceback and reloads |
|
ASA clustering: mac-address cmd is ignored on spanned port-channel interface in 9.6.2 |
|
ASA not update access-list dynamically when forward-reference enable is configured |
|
Webvpn portal not displayed corrrectly for connections landing on default webvpn group. |
|
ASA inspection-MPF ACL changes are not getting ordered correctly in the ASP Table |
|
ASA may traceback with Thread Name: Unicorn Admin Handler |
|
Reloading Active unit in Active/Standby ASA failover pair is not triggering a failover. |
|
ikev2 handles get leaked in a L2L setup |
|
ASA L3 Cluster: DHCP relay drops DHCPOFFER in case of asymmetric routing |
|
Tracking route is up while the reachability is down |
|
Traceback in ASA Cluster Thread Name: qos_metric_daemon |
|
ASA nat pool not getting updated correctly. |
|
Unable to configure ssh public auth for script users |
|
ASA traceback in threadname Datapath |
|
ASA(9.1.7.12):Connection entries created for multicast streams through standby ASA. |
|
Unable to configure SSH public key auth for non-system contexts |