Guest

Preview Tool

Cisco Bug: CSCvi79999 - 256 Byte block leak observed due to ARP traffic when using VTI

Last Modified

Aug 17, 2018

Products (1)

  • Cisco ASA 5500-X Series Firewalls

Known Affected Releases

9.8(2) 9.8(2.20) 9.8(2.24)

Description (partial)

Symptom:
Block Leak Will Be Observed. Eventually we would reach the below state:

------------------ show blocks ------------------

  SIZE    MAX    LOW    CNT
     0   2950   2866   2950
     4    400    399    399
    80   2526   2448   2517
   256  20000      0      0 >>>> Both Low and CNT is "0"
  1550  10589  10244  10549
  2048   6848   6847   6848
  2560   2964   2963   2964
  4096    100     99    100
  8192    100    100    100
  9344  10000   9999  10000
 16384    154    154    154
 65536     16     16     16

Conditions:
VTI is in use.
Route is configured for a specific destination through the VTI and when traffic is generated for this destination for a specific source we drop the traffic in the tunnel because the proxy-identity is not matched.

Related Community Discussions

ASA se congela
Hola buenas tardes Tengo un problema con unos ASA 5506x , lo cuales estamos implementando en la compañia en la que trabajo estos los usamos para tener las lineas de produccion aisladas a la red de usuarios, el problema comenzo cuando empezamos a migrar del modelo 5505 al 5506x, de los 4 que llevamos reemplazados en los 4 hemos tenido problemas que se pierda la comunicacion outside y la unica manera de reestablecer es reiniciando el ASA AL en la parte del log aparece esto System is low on free memory ...
Latest activity: Jun 22, 2018
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.