Preview Tool

Cisco Bug: CSCsz95417 - Multicontext transparent FW with policy NAT affects ICMP traffic

Last Modified

Feb 22, 2014

Products (1)

  • Cisco Catalyst 6500 Series Firewall Services Module

Known Affected Releases


Description (partial)

ICMP traffic might experience intermittent failures when passing through a transparent FWSM context and subjected to policy-nat. Only ICMP traffic is affected by this problem.

The following conditions must be met to hit this problem:
1) ICMP ping traffic must be  flowing through a FWSM in transparent mode
2) The ICMP traffic must be subjected to policy nat (nat with an access-list) on the FWSM
3) The ICMP inspection must be disabled in the service-policy of the FWSM
4) The device sending the pings must also be sending non-icmp traffic through the FWSM context as well
Bug details contain sensitive information and therefore require a account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.