Guest

Preview Tool

Cisco Bug: CSCvs73754 - ASA/FTD: Block 256 size depletion caused by ARP of BVI not assigned to any physical interface

Last Modified

Oct 01, 2020

Products (1)

  • Cisco ASA 5500-X Series Firewalls

Known Affected Releases

9.10(1.32) 9.8(4.10)

Description (partial)

Symptom:
ASA/FTD device may experience 256 byte block depletion leading to traffic disruption/outage.

Example seen from "show blocks" output:

  SIZE    MAX    LOW    CNT
     0    825    818    825
     4    300    299    299
    80   2678   2648   2678
   256  20000      0      0        <<<<<<<<<
  1550   9179   9003   9175
  2048   2100   2100   2100
  2560   1636   1636   1636
  4096    100     99    100
  8192    100    100    100
  9344    100    100    100
 16384    138    138    138
 65536     16     16     16

Conditions:
> Platforms running either ASA or FTD
> Device configuration with any BVI interface without any member interfaces assigned
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.