Guest

Preview Tool

Cisco Bug: CSCvv36518 - ASA: Extended downtime after reload after CSCuw51499 fix

Last Modified

Oct 06, 2020

Products (1)

  • Cisco ASA 5500-X Series Firewalls

Known Affected Releases

9.12(4.2)

Description (partial)

Symptom:
Extended downtime is observed after CSCuw51499 fix in certain scenarios.

Conditions:
The issue is observed in all versions which have CSCuw51499 fix, e.g. 9.12.4.

The issue exists in standalone mode and failover mode. Clustering wasn't tested.

In standalone mode, if ASA is rebooted, it takes more time to become fully operational and start passing traffic, if "asp rule-engine transactional-commit access-group" is configured. The time required to process ACLs during bootup depends on the size of interface ACLs and whether "object-group-search access-control" is enabled or not.

In case of failover, if standby unit is rebooted, it takes more time to process interface ACLs. If active unit crashes or is rebooted in the meantime, downtime is observed.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.