03-10-2020 12:41 AM
03-10-2020 12:58 AM
Hi,
Ensure there are no power related issues. Verify the output of "show crashinfo" by using the Traceback Analyzer: https://cway.cisco.com/cli/
Upgrade to a stable version and see how it goes. If still not working, open a TAC case and RMA it.
Regards,
Cristian Matei.
03-10-2020 01:59 AM - edited 03-10-2020 02:10 AM
Hi Cristian, My capture in below Show ASA system diagnostics "Cisco ASA System Diagnostics: TypeError: results.push is not a function" and traceback analyzer "This crash is a match to bug CSCvi16029 - Cisco Adaptive Security Appliance WebVPN Denial of Service Vulnerability" "This crash is a match to bug CSCvp00230 - ASA crashed when customer was authenticating to AnyConnect" Please help advices Attachment files show crashinfo file Thanks
03-10-2020 03:20 AM
Hi,
Upgrade your ASA, look in the software download section for recommended images, even if those are "Interim".
Regards,
Cristian Matei.
04-06-2020 08:11 PM - edited 04-06-2020 08:48 PM
HI Cristain Matei,
Please help me document step by step guide upgrade firmware my firewall ASA 5525-x
All my company activities are through this device. If there is a risk, it will stop.
Recent asa devices often automatically reboot :(
Thanks
04-10-2020 05:34 AM
As mentioned on the CLI Analyzer results, your ASA is running a release vulnerable to below defect, and your device is being exploited and experiencing those frequent crashes:
https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvi16029
You will likely experience this crash over and over again until you upgrade the ASA code to a fixed release, or should the attackers exploiting this vulnerability stop, which unfortunately less likely will happen considering the incidence of events we have noticed and got reported.
As you are currently running the ASA release 9.8.1, the best candidate for software upgrade is release 9.8.4.20. This will contain the fix for the mentioned defect and all other defects found and fixed so far on this train.
Here is the download link of the image:
https://software.cisco.com/download/home/284143129/type/280775065/release/9.8.4%20Interim
Here is the upgrade steps:
I will also need to upgrade the ASDM image, as 9.8.4.x requires ASDM 7.12.1 or higher.
ASA Compatibility matrix:
https://www.cisco.com/c/en/us/td/docs/security/asa/compatibility/asamatrx.html#id_59423
04-10-2020 09:01 AM
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide