The ASA 5510 with software version 7.0 (4) can crash in the thread name: vpnfo_thread_msg in a failover scenario

Document

Wed, 07/22/2009 - 19:27
Jun 17th, 2009
User Badges:
  • Gold, 750 points or more

Core issue

This problem is due to the presence of Cisco bug ID CSCsc48463.

If the Cisco Adaptive Security Appliance (ASA) 5510 is a part of a failover set and the active ASA terminates VPN connections, the standby ASA 5510 can crash when VPN sessions are replicated to the standby ASA.

Note: This problem does not affect the ASA 5520, ASA 5540, or any PIX Firewall platform.


Resolution

As a workaround, perform one of these steps:

  1. Remove the standby ASA 5510 from the failover set.

  2. Download and upgrade the ASA software to version 7.1.1.



Manifestation

Crashes / reboots / traceback


Frequency

Continuously


VPN Tunnel End Points

ASA


Features & Tasks

Failover


VPN Protocols

IPSec


Loading.

Actions

This Document

Related Content