Cisco Bug: CSCta62631 - H323 inspection fails when multiple TPKT messages in IP packet
Nov 09, 2016
- Cisco ASA 5500-X Series Firewalls
Known Affected Releases
8.0(4) 8.0(4.34) 8.2(1)
Symptom: When H323 traffic is traversing the ASA, and if that H323 traffic has IP packets that contain multiple TPKT messages, the firewall might fail to correctly process the H323 information and perform the necessary inspections. One symptom might be that internal IP addresses in the payload of the TCP packets are not correctly "fixed-up" by the firewall if they are subjected to address translation on the firewall. Conditions: All of the following conditions must be met to hit this problem: 1) H323 traffic must traverse the firewall, and the IP packets in these flows must contain more than one TPKT message per IP packet. 2) The H323 inspection must be enabled on the firewall.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.
Bug Details Include
- Full Description (including symptoms, conditions and workarounds)
- Known Fixed Releases
- Related Community Discussions
- Number of Related Support Cases