Cisco Bug: CSCvv36518 - ASA: Extended downtime after reload after CSCuw51499 fix
Oct 06, 2020
- Cisco ASA 5500-X Series Firewalls
Known Affected Releases
Symptom: Extended downtime is observed after CSCuw51499 fix in certain scenarios. Conditions: The issue is observed in all versions which have CSCuw51499 fix, e.g. 9.12.4. The issue exists in standalone mode and failover mode. Clustering wasn't tested. In standalone mode, if ASA is rebooted, it takes more time to become fully operational and start passing traffic, if "asp rule-engine transactional-commit access-group" is configured. The time required to process ACLs during bootup depends on the size of interface ACLs and whether "object-group-search access-control" is enabled or not. In case of failover, if standby unit is rebooted, it takes more time to process interface ACLs. If active unit crashes or is rebooted in the meantime, downtime is observed.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.
Bug Details Include
- Full Description (including symptoms, conditions and workarounds)
- Known Fixed Releases
- Related Community Discussions
- Number of Related Support Cases