Guest

Preview Tool

Cisco Bug: CSCvv58332 - ASA/FTD is reading BGP MP_REACH_NLRI attribute's next-hop bytes in reverse order

Last Modified

Oct 27, 2020

Products (1)

  • Cisco Adaptive Security Appliance (ASA) Software

Known Affected Releases

6.4(0.0) 6.5(0) 6.6

Description (partial)

Symptom:
Currently ASA/FTD code reverses the next-hop byte order contained in the BGP MP_REACH_NLRI path attribute

Example:
> show bgp neighbors 192.168.0.9 routes
BGP table version is 8, local router ID is 192.168.2.1
Status codes: s suppressed, d damped, h history, * valid, > best, i - internal,
              r RIB-failure, S Stale, m multipath
Origin codes: i - IGP, e - EGP, ? - incomplete

   Network          Next Hop        Metric LocPrf Weight  Path
*  192.168.12.212/32                    9.0.168.192                        0  13879 65000 ?

Conditions:
The appliance is forming adjacency with another BGP speaking router and that peer router advertises prefix using MP_REACH_NLRI attribute for IPv4 unicast AF.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.