Field Notice: FN – 72550 – ASA and Firepower Software: Secure Firewall Appliance Might Traceback And Reload In A High Availability Configuration – Software Upgrade Recommended

March 17, 2023

News

Problem Description

For some versions of Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) software, the Cisco Secure Firewall appliance might traceback and reload when in a failover High Availability (HA) configuration.

Background

Cisco Secure Firewall deployments in failover HA configurations with stateful failover enabled might experience a race condition that causes affected ASA or FTD software to run out of memory buffer when the connection state is synchronized. This condition causes the firewall device to traceback and reload.

Problem Symptom

The log files might show one of these error messages after the firewall traceback and reload. The error messages are available from the console in the crashinfo file (ASA and FTD software) or in the ASAconsole.log file located in /ngfw/var/log/ (FTD software only).

This advisory is available at the following link:
https://www.cisco.com/c/en/us/support/docs/field-notices/725/fn72550.html

Leave a Reply Cancel reply

Platinum Access

GAIN ACCESS TO ALL SELF-PACED COURSES, PRACTICE EXAMS, VIDEOS, AND OTHER KNOWLEDGE-BOOSTING RESOURCES