Cisco Bug: CSCvv75649 - Large tcp stream fails DNS translation
Oct 10, 2020
- Cisco ASR 1000 Series Aggregation Services Routers
Known Affected Releases
Symptom: Network address translation (NAT) Application-level gateway (ALG) for DNS can fail to process TCP stream containing large number of address records. Documentation is not clear about maximum supported message size, but exceeding it shall reset the connection rather than delivering invalid data. Conditions: Rarely, the DNS response delivered over TCP can contain over 640 records. With outside nat they should get translated, but they are delivered as arrived.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.
Bug Details Include
- Full Description (including symptoms, conditions and workarounds)
- Known Fixed Releases
- Related Community Discussions
- Number of Related Support Cases