Guest

Preview Tool

Cisco Bug: CSCuq31617 - IPS does not remove block when comm are recovered after temp disruption

Last Modified

Nov 08, 2016

Products (1)

  • Cisco ASA 5500-X Series Firewalls

Known Affected Releases

8.6(1) 9.1(5)

Description (partial)

Symptom:
Scenario:

- host block is placed
- communications between IPS and firewall device are temporarily disrupted
- host block is removed (or expires)
- communications recover

In such a case IPS thinks that the block no longer exists, but the block is still in place on the managed device. The IPS doesn't send "no block" command to the managed device when communications are restored.

Conditions:
All IPS versions.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.