Guest

Preview Tool

Cisco Bug: CSCuq21016 - Local pool address not released -> Duplicate local pool address found

Last Modified

Nov 08, 2016

Products (1)

  • Cisco ASA 5500-X Series Firewalls

Known Affected Releases

8.4(7.15)

Description (partial)

Symptom:
The IP address assigned to L2TP/IPSEC client is not released.

The ASA tries to assign the IP and fails with the following error messages:

%ASA-4-737033: IPAA: Unable to assign Local Pool provided IP address (x.x.x.x) to Client. This IP address has already been assigned by Local Pool
%ASA-4-737025: IPAA: Duplicate local pool address found, x.x.x.x in quarantine

- the IP is being held - seen on "show ip local pool" -> Held Addresses
- the Time Remaining counter goes to zero,
- the the IP is returned to the pool.
- once again the ASA tries to assign it, fails and put it on the hold list.

- That goes in circles until reboot.
- With time the number of affected IPs grows.

Conditions:
- L2TP over IPSEC clients
- IP local pool(s) assigned using group-policy
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.