Guest

Preview Tool

Cisco Bug: CSCsz26513 - TCP segment trim to right window edge causing ssl alerts

Last Modified

Feb 22, 2014

Products (1)

  • Cisco ACE Application Control Engine Module

Known Affected Releases

3.0(0)A2(1.4) 3.0(0)A2(1.4a)

Description (partial)

Symptom:

The customer is using a home-grown application that rides on HTTPS and terminates on the ACE module, then is sent in clear-text to a backend server. When transferring large file the ACE sends an encrypted alert to the client. Just prior to this, it reduces its TCP window to zero, then bumps it up, and after it gets the packet that it was ACK'ing for from the client, it sends the encrypted alert.

Conditions:

The network is losey with duplicate packets, retransmission and long delays.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.