Guest

Preview Tool

Cisco Bug: CSCvs45543 - SSH Server resources get maxed out for multiple contexts over time, denying further SSH sessions.

Last Modified

Aug 28, 2020

Products (1)

  • Cisco ASA 5500-X Series Firewalls

Known Affected Releases

9.8(4.8)

Description (partial)

Symptom:
SSH Resources are filled, causing additional SSH session to the context to fail.

Resource                 Current        Peak      Limit        Denied     Context
SSH Server                     5           5          5             9271       ContextA    <<<---!!!
SSH Server                     5           5          5             5362       ContextB    <<<---!!!
SSH Server                     5           5          5             21374      ContextC    <<<---!!!


The following log can be seen, the SSH session is terminated.

ASA-6-315011:  SSH session from 192.168.1.1 on interface mgmt for user "*****" disconnected by SSH server, reason: "Internal error" (0x00)

Conditions:
Software Version:
9.8(4)8

ASA in Multiple Context Mode.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.