ANNOUNCEMENT - The community will be down for maintenace this Thursday August 13 from 12:00 AM PT to 02:00 AM PT. As a precaution save your work.
cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
132
Views
0
Helpful
0
Replies
Highlighted
Beginner

CSCva36446 - ASA Stops Accepting Anyconnect Sessions/Terminates Connections Right After Successful SSL handshake - 1

I am experiencing this on a regular basis over the past week.  It started in early 2020 with an occasional hang of the firewall.  I have now been able to track access from external, unauthorized IP addresses originating ex-US, seemingly attacking our ASAv10 (running v9.6) and taking our service offline like a DoS. It appears that after the successful TLS1.2 negotiation the caller introduces something that causes the ASAv to go into a CPU intensive loop.  All Syslog logging stops.  The only solution has been reboot, which is unsatisfactory. 

Log file attached.  Any suggestions welcome.

Everyone's tags (2)