Preview Tool

Cisco Bug: CSCsz57920 - SSL: Crash with FE SSL test with an invalid rehandshake

Last Modified

Feb 06, 2017

Products (1)

  • Cisco ACE 4700 Series Application Control Engine Appliances

Known Affected Releases


Description (partial)

When configured for SSL termination, the ACE appliance may become unresponsive if it receives a large number of invalid rehandshake requests from a client. 

This condition can be identified by a large number of total tried connections in the SSL stats on the ACE appliance (on the order of 100,000 connections).

This occurs when the ACE appliance is configured to perform SSL termination and it receives invalid rehandshake requests from the client. The ACE appliance will send a fatal alert and close the connection, as expected. After these steps are repeated a certain number of times, however, the appliance will crash.
Bug details contain sensitive information and therefore require a account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.