Guest

Preview Tool

Cisco Bug: CSCul86549 - HTTPS traffic fails through CX - TLS proxy leak

Last Modified

Jun 24, 2015

Products (1)

  • Cisco ASA Next-Generation Firewall Services

Known Affected Releases

9.1(0) 9.2(1)

Description (partial)

Symptom:
TLS traffic through CX fails after few days . Error messages like below are seen on PRSM system events.
PDTS_PROD_STATS_RING_HIGH_THRESH_EXCEEDED Pdts producer for ring TLS Proxy - Data Plane - 4_5_1_4 has exceeded high threshold
WARN PDTS_PROD_STATS_HIWATER_LIMIT Pdts producer for ring TLS Proxy - Data Plane - 4_5_1_4 has reached the hiwater limit.

Conditions:
HTTPS redirection to CX from ASA. Was noticed on 9.1(3)8 and 9.2(1)48. But could be noticed on any version.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.