Preview Tool

Cisco Bug: CSCvs02954 - ASA OSPF: Prefix removed from the RIB when topology changes, then added back when another SPF is run

Last Modified

Aug 26, 2020

Products (1)

  • Cisco ASA 5500-X Series Firewalls

Known Affected Releases

9.13(1.2) 9.8(4.12)

Description (partial)

OSPF running on ASA can unexpectedly delete prefixes from the RIB when topology changes, e.g. when DR's interface is shutdown (router R1) and BDR (router R2) becomes DR. In this case, if both DR and BDR announce prefixes to the ASA (e.g. via external LSAs), OSPF deletes routes through the R2 first (when SPF runs for the 1st time) and then re-installs them and deletes routes through the R1 (when SPF is run for the 2nd time). This behavior can introduce extra delay and traffic drops.

This is a day-1 ASA behavior which was fixed on IOS routers in the latest code.
Bug details contain sensitive information and therefore require a account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.