Cisco Cisco Catalyst 6500 Series Firewall Services Module
23
Release Notes for the Catalyst 6500 Series and Cisco 7600 Series Firewall Services Module, Software Release 4.0(x)
Resolved Caveats
Resolved Caveats in Software Release 4.0(7)
•
CSCsy18657
With SCCP V17, the FWSM becomes inaccessible when dual stack or IPv6 traffic passes through.
Call flow:
Phone A (dual stack) --> FWSM --> CUCM (dual stack) --> FWSM -- Phone B
When Phone A calls Phone B via the FWSM and CUCM, the FWSM unexpectedly reloads.
Workaround: Remove the dual stack or IPv6 configuration on the Phones and CUCM.
•
CSCsz20693
The FWSM unexpectedly reloads with a high RTSP traffic load when RTSP inspection is enabled.
This occurs with a large amount of RTSP traffic, around 42K connections/sec including RTSP traffic
through the box. This software reload is not seen with a single RTSP connection.
This occurs with a large amount of RTSP traffic, around 42K connections/sec including RTSP traffic
through the box. This software reload is not seen with a single RTSP connection.
Workaround: Disable RTSP inspection or reduce the amount of traffic.
•
CSCsz92926
When trying to distribute a large number of GLOBAL lines into OSPF on an FWSM, the OSPF
process may stop processing new LSAs and no longer update the routing table of its peers.
process may stop processing new LSAs and no longer update the routing table of its peers.
Workaround: If possible, summarize the routes you are trying to distribute, thereby decreasing the
load on the OSPF process.
load on the OSPF process.
The caveats listed in
were resolved in software Release 4.0(7), and were not previously
documented. If you are a registered Cisco.com user, view more information about each caveat using the
Bug Toolkit at the following website:
Bug Toolkit at the following website:
Table 10
Resolved Caveats in Release 4.0(7)
Caveat ID
Description
CSCtb18628
Route-monitor not update the routing table with same metric routes
CSCta44620
Software forced reset in fast_fixup with multiple FTP connections
CSCta68828
FWSM forming OSPF adjacency with 5 seconds delay
CSCsh70585
ERROR message doesn't say reason for acl insertion failure
CSCta58702
FWSM pause indefinitely due to high icmp traffic through 2 met sessions
CSCta60764
Cut-thru-proxy:certificate error after completion of initial authentication
CSCta83188
Syslog 111008 doesn't display the subnet mask with the network-object cm
CSCta58464
FTP data connection times out
CSCta62033
Adding remark lines to an optimized ACL can trigger prolonged high CPU
CSCta64995
# (hash) is lost from per-host snmp-server community after bulk sync
CSCta77829
ACL hitcount not updated in ASDM and in show access-list brief
CSCta47271
Software forced reset after enabling 'debug sunrpc'
CSCta17569
local-host objects not being freed.
CSCta41216
Login successful window closes straight away on HTTP cut through proxy
CSCta08654
Intface in shut down status intercepts traversing traffic