cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
261
Views
5
Helpful
1
Replies

Bug in ASA OS 7.0.64 for ip inspect and FTP?

popokitgoo
Level 1
Level 1

Hello,

I have a frustrating problem with FTP across our ASA 5500 using OS 7.0.64.

When an internal user connects in active mode to an external ftp server and starts to download a large file, two connections are opened: one to port 21 of the FTP server and one to port 20 of the same server. During file transfer I can see that the byte count for connection to port 20 is increasing while byte count for connection to port 21 is not increasing and the idle time is growing. I believe this is a mistake and maybe a bug in the OS; in fact a user transferring a very large file can be disconnected during download because of connection timeout on port 21. The disconnect seems to consistently happen after 60 seconds into the FTP transfer.

Has anyone seen this problem before?

Thx in advance.

1 Reply 1

vitripat
Level 7
Level 7

You are hitting this bug - CSCsc91450

You may check the details of this bug on following link for bug toolkit:

http://www.cisco.com/cgi-bin/Support/Bugtool/launch_bugtool.pl

I would recommend upgrade to the latest code.

Hope that helps.

Regards,

Vibhor.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: