Cisco Bug: CSCsz57920 - SSL: Crash with FE SSL test with an invalid rehandshake
Feb 06, 2017
- Cisco ACE 4700 Series Application Control Engine Appliances
Known Affected Releases
Symptom: When configured for SSL termination, the ACE appliance may become unresponsive if it receives a large number of invalid rehandshake requests from a client. This condition can be identified by a large number of total tried connections in the SSL stats on the ACE appliance (on the order of 100,000 connections). Conditions: This occurs when the ACE appliance is configured to perform SSL termination and it receives invalid rehandshake requests from the client. The ACE appliance will send a fatal alert and close the connection, as expected. After these steps are repeated a certain number of times, however, the appliance will crash.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.
Bug Details Include
- Full Description (including symptoms, conditions and workarounds)
- Known Fixed Releases
- Related Community Discussions
- Number of Related Support Cases