Bug was opened by our Company

swasserroth · ‎08-22-2016

Hi *,

since I do not open bugs at Cisco anymore (steals way too much time from my life...), at least I want to inform the community (and even Cisco, if there is someone reading theses forums) about a new bug in ASA 9.6.1 (all versions, including the Interims):

In 9.4.2(6) we are using the following ACE in an ACL, which is perfectly legal:

access-list an-acl extended permit 132 any4 host 193.170.170.170

In 9.6.1 this line is rejected with:

ERROR: % Incomplete command

Command completion on the CLI yields these results:

# access-list an-acl extended permit 132 any4 host ?
configure mode commands/options:
  A.B.C.D     Destination host IPv4 address
  X:X:X:X::X  Destination host IPv6 address

# access-list an-acl extended permit 132 any4 host 193.170.170.170 ?
ERROR: % Unrecognized command

I am really not amused by the software quality! These kind of bugs should never happen in such an old product...

By the way, 9.6.1. shows (again!) these kind of messages, which should have been fixed already as well:

WARNING: Pool (192.168.16.0-192.168.16.255) overlap with existing pool.

Seems to me the "undeads rising" of another old bug...

No fun!

swasserroth · ‎01-17-2017

Bug was opened by our Company in december 2016: CSCvc40459

A workaround is available. Issue was confirmed by Cisco as long as "no carrier license is enabled".

Answer of Cisco:No release planned to fix this bug

Status terminated, Severity 3, closed on 9. of january

Oh yes, Cisco really cares for (support paying!!) customers :-(

As I have written: no fun!

ASA 9.6.1: Config file parser is broken!