Guest

Preview Tool

Cisco Bug: CSCvi22198 - Duplicate message IDs for flow offload on ASA Syslog Messages doc

Last Modified

Sep 12, 2019

Products (1)

  • Cisco ASA 5500-X Series Firewalls

Known Affected Releases

9.7(1.15)

Description (partial)

Symptom:
On following ASA log messages doc we can see duplicate messages ID for Flow offload feature:

https://www.cisco.com/c/en/us/td/docs/security/asa/syslog/b_syslog/syslogs-sev-level.html

%ASA-6-803001: Flow offloaded: connection conn_id outside_ifc:outside_addr/outside_port (mapped_addr/mapped_port) inside_ifc:inside_addr/inside_port (mapped_addr/mapped_port) Protocol

%ASA-6-803002: Flow is no longer offloaded: connection conn_id outside_ifc:outside_addr/outside_port (mapped_addr/mapped_port) inside_ifc:inside_addr/inside_port (mapped_addr/mapped_port) Protocol

%ASA-6-805001: Flow offloaded: connection conn_id outside_ifc:outside_addr/outside_port (mapped_addr/mapped_port) inside_ifc:inside_addr/inside_port (mapped_addr/mapped_port) Protocol

%ASA-6-805002: Flow is no longer offloaded: connection conn_id outside_ifc:outside_addr/outside_port (mapped_addr/mapped_port) inside_ifc:inside_addr/inside_port (mapped_addr/mapped_port) Protocol

On real and lab environments found that an FTD unit would create the log messages using IDs 805001 and 805002 in order to report start and end of offload action.

Conditions:
FTD offloading connections to a FXOS chassis
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.