Preview Tool

Cisco Bug: CSCta62631 - H323 inspection fails when multiple TPKT messages in IP packet

Last Modified

Nov 09, 2016

Products (1)

  • Cisco ASA 5500-X Series Firewalls

Known Affected Releases

8.0(4) 8.0(4.34) 8.2(1)

Description (partial)

When H323 traffic is traversing the ASA, and if that H323 traffic has IP packets that contain multiple TPKT messages, the firewall might fail to correctly process the H323 information and perform the necessary inspections. One symptom might be that internal IP addresses in the payload of the TCP packets are not correctly "fixed-up" by the firewall if they are subjected to address translation on the firewall.

All of the following conditions must be met to hit this problem:
1) H323 traffic must traverse the firewall, and the IP packets in these flows must contain more than one TPKT message per IP packet.
2) The H323 inspection must be enabled on the firewall.
Bug details contain sensitive information and therefore require a account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.