Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

The modification of the access-list that contains an object-group that can cause ACL corruption in Firewall Services Module

Core issue

In Firewall Services Module (FWSM), the modification of an access control list (ACL) that contains object-groups leads to misordered ACL rules. In other words, the order of access control entries (ACEs) becomes corrupted.

As a result, the packets hit the wrong ACEs within the same ACL.

This issue is due to the presence of Cisco bug ID CSCse60868.


This issue is fixed in these FWSM versions:

  • 3.1.(3.1)

In order to resolve this issue, download the latest code from Cisco Downloads.

Version history
Revision #:
1 of 1
Last update:
‎06-22-2009 05:11 PM
Updated by:
Labels (1)
Everyone's tags (4)