Guest

Preview Tool

Cisco Bug: CSCvt36887 - ASR1002-hx crashing with IPSEC+QoS+DPI+FNF+NAT+ZBFW profile - half open list corrupted

Last Modified

Sep 10, 2020

Products (1)

  • Cisco ASR 1000 Series Aggregation Services Routers

Known Affected Releases

17.2.1

Description (partial)

Symptom:
Data plane ucode crash is caused by the half open list being corrupted

Conditions:
The corruption occurs because the firewall session is added to the half open list more than once. The conditions to recreate this issue are extremely difficult to reproduce. This is primarily a UDP issue since it does not provide any state like TCP does.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.