Guest

Preview Tool

Cisco Bug: CSCvv49698 - ASA Anyconnect url-redirect not working for ipv6

Last Modified

Oct 07, 2020

Products (1)

  • Cisco ASA 5500-X Series Firewalls

Known Affected Releases

9.12

Description (partial)

Symptom:
Remote user is not redirected by ASA when using ipv6.
In debugs "debug aaa url-redirect" we can see that proxy for ipv6 was created but redirect url is not send imedietaly to remote user as it is done for ipv4:
aaa_url_redirect: Created proxy for fde4:4c7e:8aad:7777::101

In show vpn-session detail anyconnect we can see that redirec-url is assigned to the user:
ISE Posture:
  Redirect URL : https://<ISE-URL>:8443/portal/gateway?sessionId=0a301a8f0000a0005f43baa2&portal=a1fe91e0-955...
  Redirect ACL : REDIRECT

Conditions:
redirect url is send to ASA from ISE.
ipv6 traffic is used to trigger redirection.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.