https://community.cisco.com/t5/network-security/enabling-unicast-reverse-path-forwarding-asa/m-p/4390229#M1080162 <P>I am getting this message when using the Cisco CLI Analyzer on my ASA5505.&nbsp; &nbsp;</P><P>&nbsp;</P><P><SPAN>Cisco ASA Unicast Reverse Path Forwarding (uRPF) Bypass Vulnerability- CSCuv60724.</SPAN></P><P>&nbsp;</P><P><SPAN>Should I remove these commands on the outside interface?</SPAN></P><P>&nbsp;</P><P><SPAN>What about inside?</SPAN></P> Tue, 20 Apr 2021 17:11:01 GMT patrick.hurley 2021-04-20T17:11:01Z https://community.cisco.com/t5/network-security/enabling-unicast-reverse-path-forwarding-asa/m-p/4390229#M1080162 <P>I am getting this message when using the Cisco CLI Analyzer on my ASA5505.&nbsp; &nbsp;</P><P>&nbsp;</P><P><SPAN>Cisco ASA Unicast Reverse Path Forwarding (uRPF) Bypass Vulnerability- CSCuv60724.</SPAN></P><P>&nbsp;</P><P><SPAN>Should I remove these commands on the outside interface?</SPAN></P><P>&nbsp;</P><P><SPAN>What about inside?</SPAN></P> Tue, 20 Apr 2021 17:11:01 GMT https://community.cisco.com/t5/network-security/enabling-unicast-reverse-path-forwarding-asa/m-p/4390229#M1080162 patrick.hurley 2021-04-20T17:11:01Z https://community.cisco.com/t5/network-security/enabling-unicast-reverse-path-forwarding-asa/m-p/4390233#M1080163 <P>Hi <a href="https://community.cisco.com/t5/user/viewprofilepage/user-id/293140">@patrick.hurley</a>&nbsp;</P> <P>The bug says "This problem was introduced by ASA software version 9.3(3)".&nbsp; With the ASA 5505, the last version was 9.1.x, so this issue is unlikely to affect the version you are running.</P> <P>&nbsp;</P> <P>Regardless, the ASA 5505 hardware is EOL, and the software has not been updated for several years, you are likely open to a considerable amount of bugs. Ideally you'd replace the hardware to a newer model such as the FPR-1010.</P> <P>HTH</P> Tue, 20 Apr 2021 17:18:08 GMT https://community.cisco.com/t5/network-security/enabling-unicast-reverse-path-forwarding-asa/m-p/4390233#M1080163 Rob Ingram 2021-04-20T17:18:08Z