Cisco Bug: CSCul10167 - 7201 15.2(4)M4 -- ZBF resets TCP conn with "ip tcp adjust-mss"
Jan 30, 2017
- Cisco 7200 Series Routers
Known Affected Releases
Symptom: When the <CmdBold>ip tcp adjust-mss<noCmdBold> command is applied to ZBF interface, it can happened that firewall create two sessions for the same flow. The second session is created for the same SYN packet and no further packets are matched to it, so it stays as embryonic. When the embryonic timer expire (30 sec), then firewall removes both connections from the table and sends TCP RST to both speakers. Conditions: The issue was discovered on Cisco 7201 platform for Cisco IOS Release 15.2(4)M4 and 15.1(4)M5 when the <CmdBold>ip tcp adjust-mss<noCmdBold> command is applied to ZBF interface.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.
Bug Details Include
- Full Description (including symptoms, conditions and workarounds)
- Known Fixed Releases
- Related Community Discussions
- Number of Related Support Cases