Guest

Preview Tool

Cisco Bug: CSCup86857 - IPv4 ACLs not working after merging IPv4 and IPv6 ACLs by upgrading

Last Modified

Apr 16, 2020

Products (1)

  • Cisco ASA 5500-X Series Firewalls

Known Affected Releases

9.0(4)

Description (partial)

Symptom:
When upgrading ASA from 8.4 to 9.0, IPv4 and IPv6 ACLs are merged as expected, and both of v4 and v6 traffic has no problem.
However, when reloading ASA 9.0 here, v4 traffic become unable to pass ASA, "show access-list" shows no hit count increasing.

Conditions:
1. both of IPv4 and IPv6 ACLs are enabled on ASA 8.4.
2. upgrade ASA to 9.0 (or 9.1 or 9.2), v4 and v6 ACLs are merged. 
     at this time, both of v4 and v6 traffic has no problem.
3. reload ASA, v4 traffic become unable to pass ASA.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.