11-24-2022 07:13 AM
Hi Guys
We have a Cisco ASA 5545 with software version - 9.8(4)41
We are having lots of strange issues going on with NAT, whenever we add objects, or amend NAT rules, it deletes random rules, changes source and dest ranges and randomly reorders them, this is causing us lots of issues.
Has anyone seen this?
What is the recommended stable version we should upgrade to?
Cheers
11-24-2022 07:36 AM - edited 11-24-2022 07:39 AM
""randomly reorders them""
I dont think there is issue with ordering, the reordering is default behave of ASA,
11-24-2022 08:09 AM
Hi
The issue is with the Manual NAT rules, each time we change one, it appears to delete another or re order them, definitely looks like a software bug.
What version of code is recommended that we can go straight to?
cheers
11-25-2022 07:33 AM
Which software do you use to manage NAT and ACL rules? Is it CSM, ASDM or CLI? With CLI, what you describe should never happen. With CSM I faced with NAT reordering once, but this was very corner case too, caused by "inactive" NAT rules. Blind ASA software upgrade won't probably help you until you get to the root cause of the issue.
11-25-2022 08:10 AM
I totally agree with you.
11-24-2022 10:29 AM
Hi @carl.townshend,
I would advise to go for latest 9.12 Interim release (as of this moment that would be 9.12.4-54). Although highest supported version would be 9.14 for this platform, it will have shorter lifetime than 9.12.
Kind regards,
Milos
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: