cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
511
Views
0
Helpful
1
Replies

recommended stable code for 5585x fw ?

johng231
Level 3
Level 3

Hello

Looking for a recommended code on the ASA 5585x firewall. We ran into a bug (CSCtr24705) on version 8.4.2 where it rebooted the primary firewall. The bug has to do with modifying an existing ACL that's part of a custom policy-map inside a service-policy. If we upgrade to 8.4.5 (which has the previous bug fix in it), there is another major bug (CSCud70273) where if you use the packet-tracer input command on an inside interface it causes problems too.

I don't understand why packet-tracer input would have a bug associated with it when it's been around for a long time and we use it on a daily basis for troubleshooting. Is there stable code for the 5585x to upgrade to without running into possibly a major bug? This is our core firewall so there are no VPN tunnels on it. It's setup in active/standby failover in routed mode.

Thanks in advance!

-John

1 Reply 1

malshbou
Level 1
Level 1

Hello John,

i would use 9.1.x ASA code, it is the latest ASA software, so it has fixed most (if not all) of the known bugs.

However, i advise you to check the release notes of the version you plan to deploy, and verify the fixed bugs , and the open caveats (if exisiting), and make sure that you pick 9.1.x version that targets the 5585X platform which SMP.

Hope this helps.

Mashal

------------------ Mashal Shboul
Review Cisco Networking for a $25 gift card