Guest

Preview Tool

Cisco Bug: CSCvt79990 - Enable/Disable SSLproxy CLI needs to be removed as it is not effective for ISR4321 and ASR1k

Last Modified

Aug 29, 2020

Products (1)

  • Cisco XE SD-WAN Routers

Known Affected Releases

17.2.1 17.3

Description (partial)

Symptom:
Following config is seen in ISR4321 and ASR1k though SSLPRoxy is not supported
<>
sslproxy
 no enable
 rsa-key-modulus      2048
 certificate-lifetime 730
 eckey-type           P256
 ca-tp-label          PROXY-SIGNING-CA
 settings expired-certificate  drop
 settings untrusted-certificate drop
 settings unknown-status       drop
 settings certificate-revocation-check none
 settings unsupported-protocol-versions drop
 settings unsupported-cipher-suites drop
 settings failure-mode         close
 settings minimum-tls-ver      TLSv1
<>

Conditions:
Default Configuration
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.