Guest

Preview Tool

Cisco Bug: CSCvv12857 - ASA gets frozen after crypto engine failure

Last Modified

Oct 06, 2020

Products (1)

  • Cisco ASA 5500-X Series Firewalls

Known Affected Releases

98.4(0.15)

Description (partial)

Symptom:
ASA is in frozen state, not able to pass traffic or access it, not able to trigger failover either. 

Logs are showing Crypto hardware failures:

%ASA-4-402125: CRYPTO: The ASA hardware accelerator Admin7 ring timed out (Desc= 0x5C07B530, CtrlStat= 0x8100, ResultP= 0xC983CF70, ResultVal= 255, Cmd= 0x101, CmdSize= 32768, Param= 0x4, Dlen= 304, DataP= 0xD444EC10, CtxtP= 0x0, SWReset= 258)

%ASA-4-402127: CRYPTO: The ASA is skipping the writing of latest Crypto Archive File as the maximum # of files ( 5 ) allowed have been written to < disk0:/crypto_archive >. Please archive & remove files from < disk0:/crypto_archive > if you want more Crypto Archive Files saved

After reload crypto archives are generated on ASA

Conditions:
VPN is configured on ASA
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.