02-03-2020 02:09 AM
why ASA removes TCP option field, is there any security reason or something else.
Ex:- Think about BGP Authentication, MD5 hash carry into TCP Option 19 field, but by default ASA Removes TCP Option field. Why?
02-03-2020 03:41 AM - edited 02-03-2020 03:42 AM
HI,
ASA inspection removes TCP option field due to a known bug "CSCua60046" which got fixed later on.
https://bst.cloudapps.cisco.com/bugsearch/bug/CSCua60046
affected release: 8.4(4), 8.4(3.8)
02-03-2020 10:39 AM
but it's also happens on ASA 9.6
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide